Privacy

Privacy Policy

Last updated: January 15, 2026  ·  Effective: January 15, 2026

Our commitment to your privacy: AMLCheck.run is designed with privacy at its core. We perform read-only analysis of publicly available blockchain data. We never store private keys, seed phrases, or sensitive wallet credentials. This policy explains exactly what data we collect and how we use it.

Table of Contents

  1. Data Controller
  2. Information We Collect
  3. How We Use Your Information
  4. Legal Basis for Processing
  5. Data Sharing & Disclosure
  6. Data Retention
  7. Data Security
  8. Your Rights
  9. Cookies & Tracking
  10. International Data Transfers
  11. Children's Privacy
  12. GDPR Compliance
  13. Changes to This Policy
  14. Contact Us

1. Data Controller

AMLCheck Technologies Ltd. is the data controller responsible for your personal data collected through the AMLCheck.run service.

  • Company: AMLCheck Technologies Ltd.
  • Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
  • Registration No: 15847293
  • Email: [email protected]

2. Information We Collect

2.1 Information You Provide

  • Wallet Addresses: Cryptocurrency wallet addresses submitted for AML analysis (these are public blockchain identifiers)
  • Account Information: Email address and password if you create an account
  • Payment Information: Billing details processed by our payment processors (we do not store full card numbers)
  • Communications: Messages sent to our support team

2.2 Information Collected Automatically

  • Log Data: IP address, browser type and version, pages visited, timestamps, and referring URLs
  • Device Information: Device type, operating system, and screen resolution
  • Usage Data: Features used, check frequency, and service interaction patterns
  • Cookies: Session cookies and optional analytics cookies (see Section 9)

2.3 Information We Do NOT Collect

We never collect: private keys, seed phrases, wallet passwords, or any credentials that would grant control over your cryptocurrency assets. Our analysis is strictly read-only and based on publicly available blockchain data.
Data Type Purpose Retention Period
Wallet addresses (checked) AML analysis, fraud prevention 30 days (session-based for free tier)
IP addresses Rate limiting, security, free tier enforcement 90 days
Account email Authentication, communications Duration of account + 2 years
Payment records Billing, legal compliance 7 years (UK legal requirement)
Support communications Customer service 3 years

3. How We Use Your Information

We use collected information for the following purposes:

  • Service Delivery: Processing wallet AML checks and delivering results
  • Account Management: Creating and managing user accounts
  • Payment Processing: Billing for additional checks beyond the free tier
  • Service Improvement: Analyzing usage patterns to improve our algorithms and user experience
  • Security & Fraud Prevention: Detecting and preventing abuse, unauthorized access, and fraudulent activity
  • Legal Compliance: Meeting obligations under applicable AML, financial crime, and data protection regulations
  • Communications: Sending service updates, security alerts, and marketing communications (where consent is given)
  • Rate Limiting: Enforcing daily free check limits fairly across users

5. Data Sharing & Disclosure

We do not sell your personal data. We may share your information in the following limited circumstances:

5.1 Service Providers

We work with carefully vetted third-party service providers who process data on our behalf under strict data processing agreements, including:

  • Cloud infrastructure providers (data hosting and storage)
  • Payment processors (for billing transactions)
  • Analytics providers (with anonymized data where possible)
  • Email service providers (for transactional and support communications)

5.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, including for AML/CTF reporting obligations to relevant financial intelligence units.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you before any such transfer occurs.

6. Data Retention

We retain your personal data only as long as necessary for the purposes described in this policy. Specific retention periods are listed in the data table in Section 2. When data is no longer needed, we securely delete or anonymize it.

You may request earlier deletion of your data by contacting us at [email protected], subject to our legal retention obligations.

7. Data Security

We implement industry-standard security measures to protect your personal data, including:

  • TLS/SSL encryption for all data transmission
  • AES-256 encryption for data at rest
  • Access controls and authentication requirements for staff
  • Regular security audits and penetration testing
  • Incident response procedures for potential data breaches

Despite these measures, no method of internet transmission or electronic storage is 100% secure. We will notify you promptly if a data breach occurs that affects your personal data.

8. Your Rights

Under applicable data protection law (UK GDPR / EU GDPR), you have the following rights:

Right of Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Portability

Receive your data in a machine-readable format to transfer elsewhere.

Right to Restrict Processing

Request that we limit how we use your personal data.

Right to Object

Object to processing based on legitimate interests or direct marketing.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

9. Cookies & Tracking

9.1 Essential Cookies

We use essential cookies necessary for the Service to function, including session management and rate limiting enforcement. These cannot be disabled.

9.2 Analytics Cookies

With your consent, we use analytics cookies to understand how users interact with our Service. These cookies collect anonymized data about page views, session duration, and feature usage. You can withdraw consent at any time.

9.3 Managing Cookies

You can control cookies through your browser settings. Disabling essential cookies may affect Service functionality. For more information, visit allaboutcookies.org.

10. International Data Transfers

Our primary servers are located within the United Kingdom and European Economic Area. If we transfer your data to countries outside the UK/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK ICO or European Commission, or transfers to countries with an adequacy decision.

11. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child, we will take steps to delete it promptly. If you believe we have collected data from a child, please contact us at [email protected].

12. GDPR Compliance

AMLCheck Technologies Ltd. is committed to compliance with the UK General Data Protection Regulation (UK GDPR) and, where applicable, the EU General Data Protection Regulation (EU GDPR). Our data protection practices include:

  • Privacy by design and default principles embedded in our Service
  • Data minimization — we collect only what is necessary for the stated purpose
  • Transparent processing with a clear lawful basis for each data category
  • Regular data protection impact assessments for high-risk processing activities
  • Staff training on data protection obligations

We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on individuals.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Material changes will be communicated via email (for registered users) or by prominent notice on our website at least 30 days before they take effect.

The "Last updated" date at the top of this page indicates when the policy was last revised. We encourage you to review this policy periodically.

14. Contact Us

For any privacy-related questions, requests, or concerns, please contact our Data Protection team:

  • Email: [email protected]
  • Post: Data Protection Officer, AMLCheck Technologies Ltd., 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom

We aim to respond to all privacy inquiries within 5 business days and all formal data subject requests within 30 days.

If you are unsatisfied with our response, you have the right to complain to the UK Information Commissioner's Office (ICO): ico.org.uk/make-a-complaint or via telephone: 0303 123 1113.