- We, the developers of breadwallet, do not have access to your private information or actively track you in any way.
- You are never required to share any personal information to use the basic breadwallet app, and your bitcoin private keys are only ever accessible to your own device.
- If you choose to share your data with one of our third-party service providers, we make it easy for you to do so.
What personal information do we collect from our users?
- Users may install and use the breadwallet app on iPhone or Android without entering any personal information.
- We may offer additional services through our app, provided by third parties, which require the user to enter a certain amount of personal information in order to use the services.
- Users who do not wish to enter their personal information can simply refrain from accessing these third-party services. The breadwallet app will continue to function like normal.
- Any emails we receive to our customer support platform, including the sender’s email address, will be visible to breadwallet employees. Information received through the customer support platform will be considered confidential and will not be shared outside the company.
When do we collect personal information?
Your personal information is only collected if and when you elect to use one of our third-party services.
How do we use your personal information?
The breadwallet app uses your camera to scan QR codes. All processing of QR codes is done within your phone and no pictures or videos from your camera are shared with us or anyone else.
How do we protect your personal information?
- When you share personal information with us for the purpose of using one of our third-party services, your personal information is encrypted and transmitted to the third party.
- For your convenience, information you have entered may be encrypted by your device and stored on our servers, so that only your device is able to read the information. When you access our third-party services again in the future, this data can be downloaded by your device, decrypted, and transmitted to a third-party service on your behalf so you do not have to enter it again. Since this information is encrypted by your device, is it not viewable by breadwallet employees or any third parties other than the ones you choose to share your data with.
- Bitcoin private keys are always encrypted by the secure hardware storage on a user’s device, meaning they are never accessible outside the device.
What tracking information do we collect?
- Users who visit our website or use our app may have their device’s I.P. address logged for the purpose of generating anonymous statistics or troubleshooting the performance of our web servers. Your I.P. address will not be used to track or identify you, but may be used to determine your geographic location to determine which of our services you are presented with.
- Users of our iPhone or Android app will receive an anonymous unique device id (UDID) for the purpose of identifying the device to breadwallet servers. This UDID will not be tied to users’ identities, but will be used for debugging purposes and to differentiate devices when users of our third-party services access the services using multiple devices.
Do we disclose the information we collect to third parties?
Your I.P. address and any personal information you enter while accessing a service provided by a third party will be shared with that third party. No personal information will be shared with a third party unless you explicitly sign up for services provided by that third party through the breadwallet app.
Your I.P. address may be visible to, and logged by, multiple infrastructure-related third parties, such as internet service providers (ISPs) or web hosting services.
California Online Privacy Protection Act
According to CalOPPA, we agree to the following:
- Users can visit our site anonymously.
- You can change your personal information by emailing [email protected] (However, please note we do not store any personal information in a format that is accessible to us.)
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, The Children's Online Privacy Protection Act (COPPA) deals with the collection of personal information from children under the age of 13, and is enforced by the United States Federal Trade Commission.
Our services are not directed to children under the age of 13 years old, nor do we have any knowledge that any of our partners target children under 13. In addition we do not collect, use, or distribute information from children under age 13.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
- We will notify the users via in-site notification within 7 business days.
- We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, and gives recipients the right to stop receiving unwanted email.
We collect your email address in order to:
- Facilitate the use of third-party services through our app.
- Provide customer support to our users, in the event users contact us.
If at any time you would like to unsubscribe from receiving future emails, you can email us at [email protected] and we will promptly remove you from ALL correspondence.
Last Updated March 8, 2017