Privacy Policy

This Privacy Policy explains how BGeometrics (charts.bgeometrics.com) collects, uses, and protects your personal data in compliance with the General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679. By using our website or API, you acknowledge the practices described herein.

Last updated: February 24, 2026

1. Data Controller

The data controller responsible for your personal data is BGeometrics.
Contact: info@bgeometrics.com
Website: charts.bgeometrics.com

2. Data We Collect

We collect only the minimum personal data necessary to provide our services:

Account & API registration: email address, username, and hashed password when you create an account at bitcoin-data.com to obtain an API key.

Usage data: API request logs (endpoint, timestamp, anonymised IP address) for rate-limit enforcement and abuse prevention.

Analytics data: anonymised browsing data collected via Google Analytics (pages visited, session duration, device type, approximate location at country level).

Communications: email address and message content if you contact us directly.

3. Legal Basis for Processing

We process your personal data on the following legal bases under GDPR Article 6:

Contract performance (Art. 6.1.b): to create and manage your API account and deliver the services you requested.

Legitimate interests (Art. 6.1.f): to detect and prevent abuse of the API, ensure platform security, and improve our services through anonymised analytics.

4. How We Use Your Data

We use the data we collect to:

• Provide and maintain the free On-Chain charts and Bitcoin Data API.
• Manage your API key, subscription, and account.
• Enforce API rate limits (8 req/hour · 15 req/day on the free tier).
• Respond to support requests and enquiries.
• Detect, investigate, and prevent fraudulent or abusive activity.
• Improve our platform through anonymised usage analytics.
• Send transactional emails (e.g., API key delivery, subscription receipts). We do not send marketing emails without your explicit consent.

5. Data Retention

We retain your personal data only for as long as necessary:

Account data: kept for the duration of your account and up to 2 years after deletion, unless a longer retention period is required by law.

API request logs: retained for up to 90 days for abuse detection, then automatically deleted or fully anonymised.

Analytics data: aggregated and anonymised; raw session data is retained by Google Analytics for up to 14 months.

Support communications: retained for up to 3 years to resolve disputes or comply with legal obligations.

6. Cookies

BGeometrics uses the following types of cookies:

Strictly necessary cookies: required for the website to function (e.g., session management, dark/light mode preference). These cannot be disabled.

Analytics cookies: set by Google Analytics to collect anonymised information about how visitors use the site. These are only placed with your consent.

You can manage or withdraw your cookie consent at any time through your browser settings or our cookie banner. Disabling analytics cookies does not affect your ability to use the charts or API.

7. Third-Party Services

We use the following third-party services that may process data on our behalf:

Google Analytics (Google LLC): anonymised website usage analytics. Data may be transferred to the USA under Google's Standard Contractual Clauses. You can opt out via Google's opt-out browser add-on.

bitcoin-data.com: our backend platform for API key management and subscription processing. Operates under the same data controller.

Payment processors: subscription payments are handled by our payment provider (Lightning Network / third-party processor). We do not store payment card details.

8. Data Sharing & Disclosure

We do not sell or rent your personal data to third parties.

We may disclose your data only in the following circumstances:

• Service providers: trusted processors acting on our behalf (e.g., hosting, analytics) under appropriate data processing agreements.
• Legal obligations: when required by applicable law, court order, or to protect the rights and safety of BGeometrics or others.
• Business transfers: in the event of a merger or acquisition, data may be transferred with adequate protections in place.

9. International Data Transfers

Some of our third-party providers (e.g., Google Analytics) are based outside the European Economic Area (EEA). Where personal data is transferred to countries not recognised by the European Commission as providing an adequate level of protection, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission.
• Adequacy decisions where applicable.

You may request a copy of the relevant safeguards by contacting us at info@bgeometrics.com.

10. Your Rights Under GDPR

If you are located in the EEA or UK, you have the following rights regarding your personal data:

Right of Access (Art. 15)

You have the right to request a copy of the personal data we hold about you and information about how it is processed.

Right to Rectification (Art. 16)

You can ask us to correct any inaccurate or incomplete personal data we hold about you.

Right to Erasure (Art. 17)

You may request the deletion of your personal data where there is no overriding legal reason for us to continue processing it ("right to be forgotten").

Right to Restriction (Art. 18)

You can ask us to restrict processing of your data in certain circumstances, for example while we verify the accuracy of your data or consider an objection.

Right to Data Portability (Art. 20)

Where processing is based on consent or contract and carried out by automated means, you may request your data in a structured, machine-readable format.

Right to Object (Art. 21)

You have the right to object to processing based on our legitimate interests. We will stop processing unless we can demonstrate compelling legitimate grounds that override your interests.

11. How to Exercise Your Rights

To exercise any of your rights, please contact us at info@bgeometrics.com. We will respond within 30 days of receipt of your request. We may need to verify your identity before processing certain requests.

You also have the right to lodge a complaint with your national data protection supervisory authority. In Spain, this is the Agencia Española de Protección de Datos (AEPD): www.aepd.es.

12. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

• HTTPS encryption for all data in transit.
• Hashed storage of passwords (never stored in plaintext).
• Access controls limiting data access to authorised personnel only.
• Regular review of our data processing practices.

Despite these measures, no method of transmission over the internet is 100% secure. If you suspect a data breach, please contact us immediately.

13. Children's Privacy

BGeometrics services are not directed at children under the age of 16. We do not knowingly collect personal data from minors. If you believe a child has provided us with personal data without parental consent, please contact us at info@bgeometrics.com and we will delete it promptly.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically. Continued use of our services after changes are published constitutes your acceptance of the updated policy.

15. Contact

For any questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out to us:

Email: info@bgeometrics.com
Twitter / X: @BGeometrics
Contact form: charts.bgeometrics.com/pages-contact.html