Privacy Policy

Last updated: 23 April 2026. This is the short, honest version of what we store and why. The full legal text follows.

TL;DR

1. Who is the data controller?

The data controller is the CrimeCode operator (Italy, EU). For questions, privacy requests, or GDPR complaints, contact hello@crimecode.cc or @OpCrime1312 on Telegram.

2. What we collect and why

When you message our bot or sign in

When you place an order

When you use cloud sync

When you create or join a team

When an error happens

3. Cookies and local storage

The website at crimecode.cc does not use tracking cookies. The web IDE and the desktop app use localStorage on your own machine for:

No third-party analytics, no advertising, no fingerprinting.

4. Payment data

We do not touch payment cards or PayPal. Payments happen on-chain. The only data we see is the public blockchain transaction: from wallet, to wallet, amount, tx hash, timestamp. We record the tx hash against your order so you can trace it.

5. Who we share data with

We do not sell your data and never will. We do not share it with advertisers, governments, or other third parties outside of a valid legal request.

6. Retention

7. Your GDPR rights

If you are in the EU/EEA, you have the following rights under GDPR:

To exercise any right, message @OpCrime1312 from the Telegram account you signed up with, or email hello@crimecode.cc. We respond within 30 days.

8. Children

CrimeCode is not directed at children under 16. We do not knowingly collect data from minors. If you believe a child has created an account, please let us know and we'll delete it.

9. International transfers

Although we host in the EU, some processors (Fly.io, Tigris, Sentry) are incorporated in the United States. Data transfers from the EU to the US rely on Standard Contractual Clauses (SCC) as approved by the European Commission in June 2021.

10. Security

We use HTTPS everywhere, HMAC-SHA256 signed session tokens, Basic Auth with SHA-256 hashed admin passphrase, at-rest encryption of Tigris backups, and automatic backups every 12 hours. The source of the backend is mostly open-source — you can audit exactly what we do at github.com/flamematch23-lgtm/CrimeCode-IDE.

11. Changes

We may update this policy occasionally. Material changes will be announced on this page with a new "last updated" date at least 14 days before they take effect. If the change expands the scope of data we process, we'll also message it to you via the Telegram bot.