Privacy policy

We collect account details such as name, email address, organisation, login events, plan selection, billing status, and support correspondence. We also collect matter-specific material that users choose to provide, including wallet addresses, transaction hashes, claimant records, jurisdiction and case metadata, evidence notes, uploaded documents, generated graph data, confidence grades, report drafts, and final evidence packs.

Public blockchain data, including Polygon and other on-chain transaction data where applicable, is public by design. We process that public-chain data only as needed to prepare trace outputs. We do not ask for private keys, seed phrases, exchange passwords, 2FA codes, or remote access to wallets.

We use this data to authenticate accounts, run blockchain tracing, generate evidence packs, maintain audit trails, process payments, respond to support requests, protect against abuse, and satisfy legal or contractual recordkeeping duties. We do not sell claimant or matter data and we do not use private claimant evidence to train public AI models.

Krystal Trace is operated by Krystal Unity Pty Ltd and uses product-specific sub-processors including Polygon public blockchain infrastructure for on-chain transactions, Stripe for payment processing, and OpenAI and Anthropic for analysis, report drafting, and model-assisted evidence workflows where enabled.

This Krystal Trace product addendum supplements the Krystal Unity master Privacy Policy. The master policy contains the full Krystal Unity sub-processors list, international transfer terms, GDPR/UK and CCPA rights, and Australian Privacy Principles coverage.

We apply technical and organisational controls designed to protect claimant and matter data from unauthorised access, disclosure, alteration, or loss. Matter exports and audit records may be retained for the matter lifetime plus seven years for evidence integrity unless a shorter period is agreed or a lawful hold requires longer retention.

Essential cookies may be used for login sessions, security, billing state, and service continuity. Krystal Trace does not use advertising cookies in the product console.

You may request access, correction, deletion, export, restriction, or objection where applicable by contacting privacy@krystaltrace.com. We may need to retain some evidence and audit records where deletion would compromise matter integrity, fraud prevention, or legal obligations. For the full rights framework, see krystalunity.com/privacy.

We may update this addendum as Krystal Trace changes. Material changes will be posted on this page with an updated date and, where required, notified to registered customers.

Krystal Unity Pty Ltd
Sydney, Australia
Email: privacy@krystaltrace.com