Privacy Policy

✅ Short version: IfOnlyCrypto runs no advertising, sets no tracking cookies, and collects no personal data. All calculations happen entirely in your browser. This policy is provided in full to comply with the EU General Data Protection Regulation (GDPR) and UK GDPR.

Data Controller
What Data We Process
Legal Basis for Processing
Cookies & Local Storage
Third-Party Services
International Data Transfers
Data Retention
Your Rights Under GDPR
Children's Privacy
Security
Changes to This Policy
Contact & Complaints

1. Data Controller

The data controller for IfOnlyCrypto.com is:

IfOnlyCrypto.com
Website: https://ifonlycrypto.com
Contact: hello@ifonlycrypto.com

As a small, non-commercial informational website that processes no personal data for commercial purposes, we are not required to appoint a Data Protection Officer (DPO) under Article 37 GDPR. Privacy queries can be sent directly to the address above.

2. What Data We Process

ℹ️ IfOnlyCrypto does not collect names, email addresses, account details, financial information, or any form of deliberately provided personal data. The calculator runs 100% client-side in your browser.

2a. Data we do NOT collect

Your name, email address, or any contact information
Account credentials (there are no accounts on this site)
Payment or financial information
The investment amounts or years you enter — these stay in your browser and are never transmitted to us
Precise geolocation data
Device fingerprinting data

2b. Server access logs (hosting provider)

Our hosting infrastructure (EasyPanel / VPS) may automatically record standard web server access logs, which typically include:

Data element	Purpose	Collected by us?
IP address	DDoS protection, abuse prevention	Hosting provider
Browser / user agent	Compatibility monitoring	Hosting provider
Pages visited & timestamps	Server diagnostics	Hosting provider
HTTP response codes	Error monitoring	Hosting provider
Referrer URL	Traffic analysis	Hosting provider

We do not have real-time access to individual log records. These logs are used solely for infrastructure security and diagnosing technical failures, and are not used to identify or profile individual visitors.

3. Legal Basis for Processing (GDPR Article 6)

Where any personal data is processed, we rely on the following legal bases:

Processing activity	Legal basis
Hosting provider server logs (IP address, access logs)	Legitimate interests (Art. 6(1)(f)) — preventing abuse, maintaining security, and diagnosing technical issues. These interests are not overridden by your privacy interests given the minimal nature of the data.
Live crypto price API call to CoinGecko	Legitimate interests (Art. 6(1)(f)) — delivering the core functionality of the calculator that you have chosen to use.
Consent preference stored in localStorage	Consent (Art. 6(1)(a)) and Legitimate interests — recording your privacy preference is itself a privacy protection measure.

4. Cookies & Local Storage

🍪 IfOnlyCrypto sets zero tracking cookies. No advertising cookies, no analytics cookies, no session cookies.

Cookies

We do not set any cookies on your device. The site operates without cookies entirely. If you ever see a cookie from the ifonlycrypto.com domain that is not listed in this policy, please contact us immediately as it would be unintended.

Local Storage

We use your browser's localStorage for one purpose only:

Key	Value stored	Purpose	Expires
`ioc_consent`	"all" or "necessary"	Remembers your cookie/privacy consent choice so we don't show the banner on every page load	Until you clear browser storage
`ioc_consent_date`	ISO date string	Records when consent was given (GDPR accountability)	Until you clear browser storage

You can clear these values at any time by clearing your browser's site data, or by clicking Cookie Settings in the footer and saving new preferences.

5. Third-Party Services

CoinGecko API

When you load the calculator, your browser makes a direct API request to CoinGecko (coingecko.com) to fetch live cryptocurrency prices. During this request, your IP address is visible to CoinGecko's servers. We do not control or have access to any data CoinGecko may log. Please review CoinGecko's Privacy Policy for details.

If you select "Necessary Only" in our consent banner, the calculator will not make this API call and will instead use historical price estimates stored locally.

Umami Analytics

We use Umami (umami.is), a privacy-friendly, open-source analytics platform, to understand aggregate traffic patterns (page views, referrers, device types). Umami is self-hosted on our own infrastructure — your data is never sent to third-party analytics companies.

Umami does not use cookies, does not track you across websites, does not collect personal data, and does not store IP addresses. It records only anonymous, aggregated statistics. It is fully GDPR-compliant by design and does not require a cookie consent opt-in under the ePrivacy Directive. See Umami's privacy FAQ for details.

No advertising or invasive tracking

We do not use or load any of the following:

Google Analytics, or any cookie-based analytics platform
Google Ads, Meta Pixel, or any advertising network
Social media tracking pixels (Facebook, Twitter/X, TikTok, etc.)
Hotjar, FullStory, or any session-recording tool

6. International Data Transfers

CoinGecko is a globally distributed service. When your browser makes the live-price API call, your IP address may be processed on servers outside the European Economic Area (EEA), including in the United States and Singapore. CoinGecko states it complies with applicable data protection law. We recommend checking their privacy policy for the current transfer mechanisms they rely on.

Beyond CoinGecko API calls, no personal data collected by or on behalf of IfOnlyCrypto is transferred internationally.

7. Data Retention

Data	Retention period
Hosting provider server logs	Typically 7–30 days (set by hosting provider for operational purposes)
Consent preference (localStorage)	Until you clear browser storage or update your preferences
Calculator inputs	Never stored — exists only in browser memory during your session

8. Your Rights Under GDPR

If you are located in the EU, EEA, or UK, you have the following rights under the General Data Protection Regulation (GDPR / UK GDPR). Because we hold minimal personal data (mainly IP addresses in hosting logs), some rights may have limited practical scope — but we will always respond to your requests in good faith.

📋

Right of Access (Art. 15)

Request a copy of any personal data we hold about you.

✏️

Right to Rectification (Art. 16)

Ask us to correct inaccurate or incomplete personal data.

🗑️

Right to Erasure (Art. 17)

Request deletion of your personal data ("right to be forgotten").

⏸️

Right to Restriction (Art. 18)

Ask us to restrict processing of your data in certain circumstances.

📦

Data Portability (Art. 20)

Receive your data in a structured, machine-readable format.

🚫

Right to Object (Art. 21)

Object to processing based on legitimate interests at any time.

↩️

Withdraw Consent

Withdraw consent for functional API calls at any time via Cookie Settings.

🏛️

Supervisory Authority

Lodge a complaint with your national data protection authority (DPA).

To exercise any right, email us at hello@ifonlycrypto.com. We will respond within 30 days as required by Article 12 GDPR. There is no charge for reasonable requests.

Supervisory Authority Contacts

You have the right to lodge a complaint with your local data protection authority. Key contacts include:

UK: Information Commissioner's Office (ICO) — ico.org.uk
Ireland: Data Protection Commission — dataprotection.ie
Germany: Bundesbeauftragter für den Datenschutz (BfDI) — bfdi.bund.de
France: CNIL — cnil.fr
All EU DPAs: edpb.europa.eu

9. Children's Privacy

IfOnlyCrypto is not directed at children under 16. We do not knowingly process data relating to children. If you believe a child's data has been processed on this site, please contact us and we will take immediate steps to address it.

10. Security

The site is served exclusively over HTTPS (TLS). We apply standard security headers including X-Content-Type-Options, X-Frame-Options, and Referrer-Policy. No payment card data or sensitive personal data is ever processed on this site.

11. Changes to This Policy

We may update this Privacy Policy when our practices change or to reflect regulatory updates. The "Last updated" date at the top of this page will change accordingly. For material changes that affect your rights, we will display a notice on the site. Continued use of the site after changes constitutes acknowledgement (not legal consent) of the updated policy.

12. Contact & Complaints

For all privacy enquiries, data subject requests, or complaints, please contact:

IfOnlyCrypto — Privacy
📧 hello@ifonlycrypto.com
🌐 ifonlycrypto.com

We aim to respond to all privacy requests within 5 business days, and in any case within the 30-day statutory limit set by GDPR Article 12.

Contents

1. Data Controller

2. What Data We Process

2a. Data we do NOT collect

2b. Server access logs (hosting provider)

3. Legal Basis for Processing (GDPR Article 6)

4. Cookies & Local Storage

Cookies

Local Storage

5. Third-Party Services

CoinGecko API

Umami Analytics

No advertising or invasive tracking

6. International Data Transfers

7. Data Retention

8. Your Rights Under GDPR

Supervisory Authority Contacts

9. Children's Privacy

10. Security

11. Changes to This Policy

12. Contact & Complaints