← Back to CoinTag

Privacy Policy

Last updated: March 2025

This website and related services (website, web app and mobile applications) are owned and operated by CoinTag. This Privacy Policy describes how we collect, use and protect your personal data. We process data in line with the EU General Data Protection Regulation (GDPR) and Czech law (Act No. 110/2019 Sb., on personal data processing).

Data controller

CoinTag
Company ID (IČO): 01112228
Email: info@cointag.eu

You may contact us at the email above for any request regarding your personal data (access, correction, erasure, restriction, portability, objection, or to withdraw consent).

Website visitors

Like most website operators, CoinTag collects non-personally-identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. Our purpose in collecting this information is to better understand how visitors use our website and to operate and secure the site. From time to time, we may use or publish non-personally-identifying information in the aggregate (e.g. trends in usage).

Gathering of personally-identifying information

Certain visitors choose to interact with CoinTag in ways that require us to gather personally-identifying information. The amount and type of information we gather depends on the nature of the interaction.

Information you provide to us

When you use features such as “Suggest edit”, you may provide information including name, address, notes and optionally a photo. We collect such information only insofar as is necessary or appropriate to fulfil the purpose of your interaction (e.g. to process and publish your suggestion for the map). In each case, we collect information only as needed for that purpose.

Web server logs

We gather certain information automatically through your use of the site. This information may include IP addresses, browser type, Internet service provider (ISP), referring or exit pages, the files viewed on the site, operating system, date/time stamp, and clickstream data. We use this to analyze trends in the aggregate, administer the site and ensure security. We retain such technical data only as needed for logs, typically for a short period.

Cookies and local storage

A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. We also use local storage (e.g. in the browser or on your device) to store preferences.

CoinTag uses cookies and local storage to remember your choices (e.g. cookie consent, theme, language, favourites), to make the site and app work properly, and to improve your experience. Visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using our website, with the drawback that certain features may not function properly without them. More information about cookies can be found at www.aboutcookies.org.

What data we process and why (summary)

Data Purpose Legal basis Retention
Theme, language, favourites (stored in your device or browser) To provide your preferences and improve your experience Legitimate interest (Art. 6(1)(f) GDPR) Until you clear storage or uninstall
Approximate location (if you allow it) To show distance to places and relevant results on the map Consent (you can deny or revoke) Not stored on our servers; only used in the session
Data you send in “Suggest edit” (name, address, notes, optional photo) To process and publish your suggestion for the map Consent (by submitting the form) As long as the suggestion is displayed; you may ask for deletion
App open count, places viewed (local only, for in-app review prompt) To decide when to show the “rate the app” prompt Legitimate interest Stored only on your device; we do not receive this data
Technical data (IP, browser, device) when you visit the website To operate the site and ensure security Legitimate interest As needed for logs (typically short period)
Cookies / local storage (e.g. cookie consent, preferences) To remember your choices and preferences Consent (for non-essential) or legitimate interest (essential) As stated in the cookie notice or until you clear them

How we use personally-identifying information

We will only use the personal data we collect as reasonably necessary for the following purposes:

  • to allow you to use and interact with the site and our services;
  • to provide the services to you (e.g. map, suggestions);
  • to inform our development of the site and the services;
  • to communicate with you in response to your requests or as relevant to your use of our services;
  • as required by applicable law or for internal administrative purposes;
  • as specifically authorized by you (e.g. when you submit a suggestion).

We do not disclose personally-identifying information other than as described below. You can always refuse to supply personally-identifying information, with the caveat that it may prevent you from using certain features (e.g. “Suggest edit”).

Third parties

We will not disclose your personal data to third parties except as follows:

  • when we believe disclosure is reasonably required to comply with any law or legal request;
  • to enforce our legal and contractual rights, or to protect the rights and safety of others;
  • to service providers who help us operate the site or the services, to the limited extent required, and on condition that they may not further disclose your data or use it for any other purpose; or
  • as part of a sale of our assets or a merger of our company.

We remain responsible for compliance with this Privacy Policy by third parties to whom we disclose your personal data.

Services we use

Google Fonts. When you load our web pages, your browser may request fonts from Google’s servers (USA). Google’s privacy policy: policies.google.com/privacy. We do not send personal data to Google beyond what your browser does when loading the page.

Supabase. If you use features that rely on Supabase (e.g. photo upload for suggestions), data you submit is processed by Supabase (EU). Their terms and privacy policy apply: supabase.com/privacy.

We may use other service providers (e.g. hosting) that process data on our behalf. We choose providers that offer adequate safeguards. We do not sell your data. Where data is transferred outside the EEA (e.g. Google Fonts in the USA), we rely on adequacy decisions or appropriate safeguards (e.g. standard contractual clauses).

Your rights over personal data

Upon request, we will provide you with details regarding your personal data that we have collected or which is under our control. You have the right to:

  • Access — obtain confirmation of whether we process your data and a copy of that data.
  • Rectification — have inaccurate data corrected.
  • Erasure — have your data deleted in cases allowed by law. Information covered by this Privacy Policy may be deleted upon your request, provided that such deletion may impact our ability to provide you with the services.
  • Restriction — request that we limit processing in certain situations.
  • Data portability — receive your data in a structured, machine-readable format where applicable.
  • Object — object to processing based on legitimate interest.
  • Withdraw consent — where processing is based on consent, you may withdraw it at any time.
  • Complain — lodge a complaint with a supervisory authority. In the Czech Republic: Úřad pro ochranu osobních údajů (ÚOOÚ), uoou.gov.cz.

To exercise these rights, contact us at info@cointag.eu. We will respond without undue delay and at latest within one month.

We may keep your personal data for as long as reasonably required to meet the purposes described in this policy. We will also retain information as required by law, as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Security

We apply technical and organisational measures to protect your data against unauthorised access, loss or alteration, in line with the nature and scope of the processing.

Children

Our services are not aimed at children under 15. If you are under 15, please use the app only with parental consent. For services of the information society, consent in the Czech Republic may be given by a child from 15 years of age (Act No. 110/2019 Sb.).

Privacy policy changes

Although most changes are likely to be minor, CoinTag may change this Privacy Policy from time to time at its sole discretion. We encourage visitors to check this page periodically for any changes. We will post changes on this page so that you are always aware of how we use your personal information and in what circumstances we disclose it. Your continued use of the site after any change will constitute your acceptance of such change.

Contact: info@cointag.eu