Privacy Policy

1. Controller and contact

DCAloop is operated by the operator of dcaloop.com. For privacy questions or requests, contact [email protected].

If you are in the EU, you may also contact your local data protection authority. In Greece, this is the Hellenic Data Protection Authority.

2. Data we process

Account data: email address, authentication details, selected language, and account settings.

Google login data: when you use Google sign-in, we receive your Google account identifier, email address, and email verification status.

Binance connection data: encrypted API credentials, verification status, permission checks, balances needed for verification, and metadata needed to run your plans.

Plan and execution data: markets, amounts, schedules, take-profit settings, orders, fills, fees, timestamps, and execution status.

Billing data: subscription status and payment metadata from Stripe. DCAloop does not store full card details.

Technical data: session cookies, security logs, IP-related request metadata, device/browser information, and error logs.

3. Why we process data

To create and secure your account, authenticate you, and provide the DCA automation service.

To verify your Binance connection, run the plans you configure, show execution history, and support billing.

To send account emails such as password reset messages and service notices.

To prevent abuse, debug incidents, maintain infrastructure, comply with legal duties, and protect the service.

4. Legal bases

We process data to perform the service contract with you, including account access, Binance connection, plans, execution history, and billing.

We process some data for legitimate interests such as security, fraud prevention, debugging, service reliability, and product operation.

We process data when required by law, and we use consent where consent is required.

5. Service providers

DCAloop uses service providers for hosting, security, email delivery, authentication, payments, and infrastructure. These may include Cloudflare, Mailgun, Google, Stripe, Binance, GitHub, and hosting providers.

These providers process data only as needed for their role, subject to their own terms and data protection commitments.

6. Cookies

DCAloop uses essential cookies for login sessions, security, locale selection, and normal app operation.

DCAloop does not currently use advertising cookies on the app.

7. Retention

We keep account, plan, billing, and execution data for as long as needed to provide the service, maintain records, resolve disputes, and comply with legal duties.

Security and technical logs are kept for a limited period unless needed for investigation, abuse prevention, or legal reasons.

You can ask for account deletion. Some records may be retained where required by law or legitimate operational needs.

8. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing, or receive a copy of your personal data.

You can exercise these rights by contacting [email protected]. We may need to verify your identity before completing a request.

9. Security

DCAloop uses encryption and access controls to protect sensitive data such as Binance API credentials.

No online service can guarantee perfect security. Keep your DCAloop login and Binance account secure, and revoke API keys you no longer use.

10. Changes

We may update this policy as the service changes. The updated date at the top of the page shows the latest version.