Last updated: 2026-06-10
Swiss Whale Intelligence ("we", "us") respects your privacy. This policy describes what data we collect, why, and how you exercise your rights under the Swiss Federal Act on Data Protection (FADP / revDSG 2023) and, where applicable, the EU GDPR.
See Imprint for the legal operator. Privacy questions: contact@swisswhaleintelligence.com.
Purpose: security, debugging, abuse prevention. Retention: 30 days.
When you log into swisswhaleintelligence.com/dashboard via Telegram, we receive from Telegram:
Telegram ID, username (optional), first name, authentication timestamp. We store this in our
premium_users table for subscription tracking. We do not receive your phone
number, messages, or contact list.
Payments are processed by Stripe Inc., 354 Oyster Point Blvd, South San Francisco, CA, USA. Stripe is the data controller for card details. We receive from Stripe: subscription status, start/end dates, billing email. Card numbers never touch our servers.
Stripe Privacy: stripe.com/privacy
If you opt into premium alerts via Telegram, your Telegram ID is used to send you whale alerts.
You can disable this anytime with /stop in the bot.
Since 2026-04-29 we use a granular 4-category consent banner (DSGVO/revDSG-compliant). You can change your choice anytime via the Cookie settings link in the footer. All categories except "Necessary" are denied by default (Consent Mode v2 baseline).
preferred_lang (localStorage) — remembers EN/DE/ES choicesession cookie — login + payment flows (HMAC-signed, 30-day TTL)cookie_consent_v2 (localStorage) — your consent decision itself_ga, _ga_* (GA4 client ID, 13-month TTL)Granted via analytics_storage = granted in the GA4 Consent Mode signal.
Reserved for future conversion-tracking pixels (e.g. Meta, LinkedIn, Reddit ads). No marketing
cookies are currently set — this category is a placeholder so consent is collected
in advance of any campaign launch. Granted via ad_storage, ad_user_data,
ad_personalization in the GA4 Consent Mode signal.
All stored in browser localStorage only. No server-side persistence unless you're a logged-in Premium user with custom tickers (then synced via authenticated POST).
Data is processed by the following service providers (all bound by DPA / SCC):
claude-haiku-4-5-20251001). Used for: (a) plain-English whale_explain
answers triggered by the user, (b) sentiment scoring of public crypto Bluesky/Telegram posts (anonymised).
Bound by Anthropic Data Processing Addendum and the EU
Standard Contractual Clauses (Module One — controller-to-processor). API requests are not used for
model training per Anthropic's Commercial Terms §B.1. Logs are retained 30 days for abuse-detection
only. Data residency: us-east-1; no EU-region inference is currently available
for Claude.Some processors are located outside Switzerland/EEA. Transfers rely on: (a) EU Standard Contractual Clauses (SCC), (b) UK International Data Transfer Agreement, (c) for USA: EU–US Data Privacy Framework where applicable.
Under FADP / GDPR, you have the right to:
To exercise any right: email contact@swisswhaleintelligence.com. We respond within 30 days.
All Bitcoin and Ethereum addresses, transactions, and clusters we display are derived from the public blockchain — not personal data in the legal sense. We do not attempt to link on-chain addresses to real-world identities beyond public entity labels (exchanges, known DeFi protocols). If you believe an address we label is incorrectly attributed to you, contact us.
We may update this policy as services evolve. The current version is always accessible at swisswhaleintelligence.com/privacy. Major changes will be announced on the dashboard.