Privacy Policy
Last updated: January 2026. This platform was designed to collect as little about you as physically possible. This policy explains exactly what "as little as possible" means in practice — and what it doesn't.
1. Our Approach to Privacy
Bitcoin Change was engineered around a straightforward principle: the less we know about you, the better the service actually is — for you and for us. This is not a tagline. It is an architectural decision. Our no-KYC, no-AML Bitcoin and USDT swap service is structurally incapable of linking a transaction to a real-world identity, because we never collect the data that would create that link.
This Privacy Policy describes the minimal technical data we process to operate the service, why we process it, how long it is retained, and what it is used for. There are no buried opt-outs, no hidden analytics, and no data sold or shared for commercial purposes.
2. Information We Deliberately Do Not Collect
The following categories of data are never collected, stored, or processed on this platform — by design:
- Your name, surname, or any form of legal identity
- Email address, phone number, or any contact information
- Government-issued identification documents of any kind
- Facial recognition data, biometrics, or photos
- Persistent user accounts, usernames, or passwords
- Behavioral analytics, advertising cookies, or cross-session tracking
- Device fingerprints or persistent browser identifiers
- IP address logs linked to any transaction or identity
3. Information We Do Process (Minimal Technical Data)
To execute your swap, the following technical data is temporarily held in your browser session:
- Deposit address: The unique one-time address generated for your order to receive incoming funds.
- Destination wallet address: The address you provide where converted cryptocurrency is sent upon swap completion.
- Currency pair and amount: The coins involved and the amount sent.
- Order timestamp: When your order was created, used for rate-lock and expiry logic.
- Order ID: A randomly generated session identifier used to reference your order in support requests.
None of this data is linked to a personal identity. There is no mechanism in our system to associate an Order ID or a wallet address with a real person.
4. Server Logs
Our server infrastructure generates standard access logs that may contain IP addresses, request timestamps, and URLs accessed. These logs serve operational purposes only — debugging, uptime monitoring, and abuse prevention. They are not analyzed for marketing, not shared with third parties, and are retained only for the minimum period technically necessary before deletion. They are not cross-referenced with transaction data.
5. Third-Party Services
We use a small set of third-party services to operate the platform. Here is an honest account of each:
- KuCoin API: Used to retrieve live cryptocurrency exchange rates. No personal data of any kind is transmitted to KuCoin when rate data is fetched.
- QR Server (api.qrserver.com): Generates QR codes for deposit addresses. The deposit address string is sent to this service to produce the QR image. No other data is transmitted.
- Google Fonts: Serves web fonts via Google's CDN infrastructure. Standard font requests include IP address in the request, as with any CDN.
6. Cookies
We use a single PHP session cookie to maintain your order state while you complete an exchange. This cookie holds no personal information and expires automatically when your browser closes. We do not use advertising cookies, tracking pixels, retargeting cookies, analytics cookies, or any third-party cookie of any kind.
7. Data Retention
Order session data exists only for the duration of your active browser session. We do not operate a long-term database of completed orders linked to user identities. Once your session ends, your order data becomes inaccessible to us. We are structurally unable to produce a transaction history linked to you because we never built the infrastructure to create one.
8. Data Sharing
We do not sell, rent, license, or share your data with any third party for marketing, profiling, or commercial purposes. We may be compelled to disclose retained technical data (such as server logs) if served with a valid legal order from a jurisdiction with authority over our operations. The minimal nature of our data collection significantly limits what could be disclosed in such a circumstance.
9. Security
All connections to our service are encrypted via HTTPS. Each order generates a unique one-time deposit address, reducing correlation risk between separate orders. We apply reasonable technical controls to protect the minimal data we hold.
10. Minors
Our Service is intended for users 18 years of age and older. We do not knowingly collect information from or provide services to minors. If you are under 18, do not use this service.
11. Policy Updates
This Privacy Policy may be updated periodically to reflect changes in our operations or applicable law. Any changes will be posted on this page with a revised date. Continued use of the Service after updates are posted constitutes your acceptance of the revised policy.
12. Contact
For privacy-related questions or concerns, reach us at support@bitcoinchange.finance.