Effective date: January 19, 2026
Account info (name, email), authentication data, exchange API metadata, device and usage logs, communications with support, and KYC details (identity documents, liveness checks, sanctions/PEP screening results) where required. We do not collect your exchange credentials beyond the API keys you choose to store and their permissions.
To provide and secure the service, process trading instructions, detect abuse, communicate updates, and meet legal obligations. We do not sell your personal data.
Identity data is used to satisfy KYC/AML, sanctions, and fraud requirements. We may work with regulated verification partners to process documents and screening. Results are retained as required by law and for audit and security purposes.
API keys are encrypted at rest and access is restricted. Activity and performance data are processed to render analytics and risk controls.
We may share data with vetted processors (cloud, analytics, security, communication) under confidentiality, and when required by law. We do not share data with third parties for advertising.
We employ encryption in transit and at rest, role-based access, audit logging, and least-privilege controls. No system is perfect; you should also secure your devices and accounts.
We retain data while your account is active and as needed for legal, audit, or security purposes. You may request deletion where applicable.
Depending on your region, you may access, correct, export, or delete certain personal data, and opt out of marketing communications.
Data may be processed in jurisdictions outside your own. We use safeguards where required to protect cross-border transfers.
The service is not directed to children under 18 and we do not knowingly collect their data.
We may update this policy. Material changes will be communicated in-app or via email.
Privacy questions or requests: privacy@insterboost.com.