Privacy Policy
Effective date: January 1, 2024
Overview
CryptoPostage ("we," "our," or "the service") is built around a principle of minimum data retention. We collect only what is strictly necessary to generate a shipping label and permanently delete it as soon as the label is produced. This policy explains exactly what we collect, how we use it, and when it is deleted.
Data we collect
Shipping addresses. To generate a carrier label, we collect the sender and recipient postal addresses (name, street, city, state, ZIP, country). These are encrypted with AES-256-GCM immediately on receipt. The decryption key is destroyed the moment your label is generated, so the stored payload can no longer be read. The encrypted blob is then deleted on a rolling schedule (typically within 72 hours).
Payment data. We do not store credit card numbers, bank account details, or full crypto wallet addresses. We record the crypto invoice address we generated for your order (a one-time address unique to that payment) and the invoice status. This is necessary to confirm payment and for order recovery. We do not link your sending wallet address to your shipment data.
Order metadata. We store a non-identifying order record: order ID, timestamp, carrier, service, total cost in USD and crypto, and order status. This does not contain shipping addresses after deletion.
Optional email. If you voluntarily provide an email address at checkout, we use it only to send your order recovery link. We do not use it for marketing. This email is deleted on the same schedule as shipping address data.
Data we do not collect
- No account registration is required or stored for guest orders.
- No cookies are set for tracking or advertising purposes.
- No third-party analytics scripts are loaded.
- No device fingerprinting or cross-site tracking.
- We do not sell, rent, or share your data with third parties for marketing.
Infrastructure and third parties
To operate the service, we use third-party carriers (USPS, UPS, FedEx, DHL) and a shipping API provider to generate labels. These providers receive the shipping addresses required to produce the label. Their privacy policies apply to how they handle label data.
Payment processing is handled by a third-party crypto payment processor. The payment processor sees the invoice amount and the blockchain transaction; it does not receive shipping addresses.
Server logs
Like any web server, our infrastructure generates access logs that may include IP addresses, request timestamps, and HTTP status codes. These logs are used for abuse prevention, rate limiting, and debugging. They are not associated with specific orders and are not retained indefinitely.
Data retention summary
| Data type | Retention |
|---|---|
| Shipping addresses (encrypted) | Deleted within 72 hours of label generation |
| Encryption keys for addresses | Destroyed immediately after label generation |
| Optional email address | Deleted with shipping address data |
| Order metadata (no addresses) | Retained for support and accounting |
| Payment invoice records | Retained for accounting |
| Server access logs | Short-term retention, not linked to orders |
Your rights
Because shipping addresses are encrypted and then permanently deleted after label generation, there is typically no retrievable personal data to request deletion of after that point. If you have specific concerns or requests, contact us at support@cryptopostage.xyz.
Changes to this policy
We may update this policy when the service changes in ways that affect data handling. Material changes will be noted with a revised effective date. We recommend checking this page periodically.
Contact
Questions about this policy: support@cryptopostage.xyz