Privacy Policy

Last updated: 12 February 2026

This Privacy Policy explains how TrustCrypto Institute (“TrustCrypto”, “we”, “us” or “our”) collects, uses, shares and protects personal information when you visit our website, enrol in our certification programmes, use our examination portal, or otherwise use our Services. It also describes your rights in relation to your personal information. If you do not agree with this Policy, you should not use the Services.

Definitions

"Affiliate" means any legal entity that directly or indirectly controls, is controlled by, or is under common control with TrustCrypto.

"Customer" means a natural person who signs up for or uses our Services.

"Personal information" means any information relating to an identified or identifiable individual, such as a name, email address, IP address or other identifier.

Information we collect

We collect information that you provide directly to us, information that we collect automatically when you use the Services, and information that we obtain from third parties. If you choose not to provide certain information, we may not be able to provide some features of the Services.

Information you provide to us. This may include:

• Basic contact details such as your name, email address and country of residence.
• Account information associated with your email-based sign-in (we use magic link authentication; no passwords are stored).
• Examination responses, including multiple-choice selections and scenario answers submitted during exam sittings.
• Onboarding acknowledgements, including acceptance of terms and the timestamp of resource access.
• Information you provide when you contact us, complete a form, respond to a survey or subscribe to communications.

Information we collect automatically. When you visit our website or use the Services, we may automatically collect certain information such as:

• Your browser type and version, device identifiers and operating system.
• IP address and approximate location.
• Usage information, including pages viewed, actions taken, time and date of your visits and other diagnostic data.
• Examination security audit events, including tab switches, fullscreen exits, keyboard shortcut attempts, clipboard events, and session metadata recorded during exam sittings. These are collected to protect examination integrity.

Cookies and similar technologies. We use cookies and similar technologies to operate the website, remember your preferences, understand how the Services are used and improve performance. You can usually control cookies through your browser settings.

Information we obtain from third parties

We may receive information about you from our Affiliates, analytics providers, marketing partners or publicly available sources, consistent with Applicable Laws. We use this information to help operate, secure and improve the Services.

How we use your information

We use personal information for the following purposes:

• To provide, operate and maintain the Services.
• To personalise your experience and present content that may be relevant to you.
• To communicate with you, including responding to enquiries and providing support.
• To send you service‑related communications and, where permitted, marketing messages.
• To administer, mark, and moderate examinations and to determine assessment outcomes.
• To detect and investigate examination misconduct through security audit event analysis.
• To issue digital certificates and maintain the public certificate registry.
• To monitor and analyse usage and trends to improve the Services.
• To help detect, prevent and address fraud, security issues and misuse.
• To comply with legal obligations and enforce our Terms of Service.

How and why we share your information

We may share personal information with:

• Affiliates, where necessary to help us operate and improve the Services, subject to appropriate safeguards.
• Service providers who perform services on our behalf, such as hosting, analytics, communications, support and payment processing.
• Professional advisers, regulators and law enforcement where required to comply with Applicable Laws or to protect our rights or the rights of others.
• Other parties in connection with a corporate transaction, such as a merger, acquisition or sale of assets, subject to appropriate protections.

Public certificate registry

Upon successful assessment, your certificate ID, holder name, qualification, and issue date are published on our public certificate registry. This enables employers, clients, and other third parties to verify the validity of your certification. Publication on the registry is a core function of the certification programme and is a condition of enrolment.

How long we keep your information

We retain personal information for as long as necessary to provide the Services, to comply with our legal obligations, to resolve disputes and to enforce our agreements. When information is no longer required, we will delete or anonymise it.

Examination records, assessment results, security audit logs, and certificate data are retained indefinitely to support ongoing verification, appeals, and the integrity of the certification programme.

How we protect your information

We use reasonable technical and organisational measures to protect personal information from loss, misuse and unauthorised access, disclosure, alteration or destruction. However, no method of transmission over the Internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.

Your rights and choices

Depending on your location and subject to Applicable Laws, you may have certain rights regarding your personal information, such as the right to:

• Request access to the personal information we hold about you.
• Request correction of inaccurate or incomplete personal information.
• Request deletion of certain personal information.
• Object to or restrict certain processing of your personal information.
• Withdraw any consent you have given, without affecting the lawfulness of processing before withdrawal.

You can exercise some of these rights by contacting us at contact@trustcrypto.co.uk. We may need to verify your identity before responding to your request.

Children's privacy

The Services are not directed to individuals under the age of 18 and we do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information.

Changes to this Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. We encourage you to review this Policy periodically so that you remain informed about how we handle personal information.

Contact us

If you have any questions about this Privacy Policy or how we handle your personal information, you can contact us at:

Email: contact@trustcrypto.co.uk

United Kingdom