Last updated: 2026-04-16

Privacy Policy

Swiss Whale Intelligence ("we", "us") respects your privacy. This policy describes what data we collect, why, and how you exercise your rights under the Swiss Federal Act on Data Protection (FADP / revDSG 2023) and, where applicable, the EU GDPR.

1. Controller

See Imprint for the legal operator. Privacy questions: contact@btcwhalealerts.com.

2. Data We Collect

2.1 Automatically collected (server logs)

• IP address (anonymised after 7 days)
• User-Agent / Browser
• Referrer URL
• Request time and page

Purpose: security, debugging, abuse prevention. Retention: 30 days.

2.2 Telegram login (Dashboard)

When you log into dashboard.btcwhalealerts.com via Telegram, we receive from Telegram: Telegram ID, username (optional), first name, authentication timestamp. We store this in our premium_users table for subscription tracking. We do not receive your phone number, messages, or contact list.

2.3 Payment data (Stripe)

Payments are processed by Stripe Inc., 354 Oyster Point Blvd, South San Francisco, CA, USA. Stripe is the data controller for card details. We receive from Stripe: subscription status, start/end dates, billing email. Card numbers never touch our servers.

Stripe Privacy: stripe.com/privacy

2.4 Email (Telegram push)

If you opt into premium alerts via Telegram, your Telegram ID is used to send you whale alerts. You can disable this anytime with /stop in the bot.

3. Cookies & Analytics

3.1 Google Analytics 4 (G-PW1KJN2W86)

We use GA4 with Consent Mode v2. Analytics storage is denied by default until you accept the cookie banner. GA4 collects: anonymised IP, page views, device category, browser, country. Data processor: Google Ireland Ltd.

Opt out anytime by clicking "Decline" in the cookie banner or via browser settings.

3.2 Essential cookies

We use preferred_lang (localStorage) to remember your language choice. No tracking.

4. Third Parties

Data is processed by the following service providers (all bound by DPA / SCC):

• metanet.ch AG (Switzerland) — website hosting
• Hetzner Online GmbH (Germany) — dashboard + API servers
• Stripe Inc. (USA, Privacy Shield replacement) — payments
• Telegram FZ-LLC (Dubai) — authentication + messaging
• Google Ireland Ltd. — analytics (GA4)
• Anthropic PBC (USA) — AI-assisted sentiment scoring (anonymised public posts only)
• Bluesky Social (USA) — @btcwhalealerts.com alerts

5. International Transfers

Some processors are located outside Switzerland/EEA. Transfers rely on: (a) EU Standard Contractual Clauses (SCC), (b) UK International Data Transfer Agreement, (c) for USA: EU–US Data Privacy Framework where applicable.

6. Retention Periods

• Server logs: 30 days
• Subscription data: duration of subscription + 10 years (Swiss accounting law OR Art. 958f)
• Telegram user data: until account deletion by user
• Analytics: 14 months (GA4 default)

7. Your Rights

Under FADP / GDPR, you have the right to:

• Access your personal data (Art. 25 FADP)
• Correct inaccurate data
• Delete your data ("right to be forgotten" — Art. 15 GDPR / Art. 32 FADP)
• Object to processing
• Data portability (Art. 28 FADP)
• Withdraw consent (e.g. GA4 cookie)
• File a complaint with the Federal Data Protection and Information Commissioner (www.edoeb.admin.ch) or, for EEA residents, your national DPA

To exercise any right: email contact@btcwhalealerts.com. We respond within 30 days.

8. On-Chain Data

All Bitcoin and Ethereum addresses, transactions, and clusters we display are derived from the public blockchain — not personal data in the legal sense. We do not attempt to link on-chain addresses to real-world identities beyond public entity labels (exchanges, known DeFi protocols). If you believe an address we label is incorrectly attributed to you, contact us.

9. Changes to this Policy

We may update this policy as services evolve. The current version is always accessible at btcwhalealerts.com/privacy. Major changes will be announced on the dashboard.