Privacy Policy — Crinkl (United States)

1. Core Design Principle: Facts First, Identity Minimized

Crinkl is designed to verify whether a purchase occurred, not to require your real-world identity at receipt capture.

Receipt submission and verification rely primarily on internal submission-scoped, session-scoped, device-scoped, and tenant-scoped identifiers, rather than requiring your name, mailing address, or government-issued identity to upload a receipt.

Any later association with an account, wallet, reward preference, or notification setting is optional, deferred, and separate from the initial act of receipt submission. Even so, some information processed by the Service may still be personal information, including receipt contents, network metadata, device identifiers, wallet addresses, and support communications.

2. Information We Collect

We collect the following categories of information.

3. Sources of Information

We collect information from the following sources:

• Directly from you, such as when you upload a receipt, create an account, connect a wallet, configure preferences, claim rewards, or contact support
• Automatically from your device or browser, such as technical and usage information generated when you access the Service
• From service providers, contractors, and integrations, where needed to host, secure, process, message, support, or operate the Service
• From public blockchains or verifiable systems, where applicable to wallet-connected activity, reward claims, or other public on-chain events

4. How We Use Information

We use information for the following purposes:

• To ingest, process, OCR, normalize, classify, verify, score, and make decisions about receipt submissions
• To determine whether a transaction or spend event satisfies verification criteria
• To identify categories, merchant, line-item, or other receipt attributes using OCR, document-processing, and AI-assisted tools
• To detect fraud, abuse, duplication, manipulation, or errors
• To support internal reconciliation and linking of related submissions where necessary for fraud prevention, system integrity, or user-requested corrections
• To provide user-requested review, edits, or corrections during the receipt retention window
• To issue rewards, commitments, eligibility confirmations, or related outputs tied to verified spend
• To operate, maintain, troubleshoot, secure, and improve the Service
• To provide optional features such as profiles, wallets, notifications, preferences, or account management
• To respond to support requests and communicate with you about the Service
• To comply with applicable law, enforce our terms, protect rights and safety, and maintain records needed for auditing, dispute resolution, or system integrity

Receipt processing occurs through staged internal workflows with defined inputs and outputs rather than unrestricted access to all system data by all personnel or services.

5. AI, OCR, and Automated Processing

Crinkl uses OCR, document-processing, and AI-assisted tools to help extract, classify, normalize, enrich, and verify receipt data.

For example, these tools may help identify merchant, category, line-item, or other receipt attributes, improve extraction quality, and support verification workflows.

These tools may be operated by Crinkl directly or by service providers and contractors acting on our behalf. Their use does not change the limits described in this Privacy Policy regarding what partners and network participants receive.

6. How We Disclose Information

We do not disclose information to partners or third parties in the same way for all purposes. Different categories of information may be disclosed to different recipients depending on the function being performed.

7. What Partners and Network Participants Do Not Receive

Unless we specifically tell you otherwise for a particular feature or program, partners and network participants do not receive from us:

• Your name, username, or email address
• Your full personal profile
• Raw receipt images
• Full OCR text
• Data we intend to use to directly identify you as an individual consumer
• Persistent identifiers intentionally provided for cross-service or cross-context advertising profiles

This section does not limit disclosures to service providers and contractors acting on our behalf, including OCR, document-processing, and machine-learning providers used to analyze receipt content, or disclosures required by law.

8. Sale, Sharing, and Advertising

Crinkl does not operate as an advertising data broker.

We do not sell personal information. We also do not share personal information for cross-context behavioral advertising as those terms are defined under applicable law.

If this changes, we will update this Privacy Policy and provide any rights or notices required by applicable law.

9. How Information Leaves Internal Processing Boundaries

When information leaves internal processing boundaries for partner, network, or protocol interaction, we aim to limit those outputs to constrained forms such as:

• Verified spend attestations
• Aggregate measurements derived from many receipts or events
• Eligibility, commitment, or unlock signals
• Minimal protocol metadata required for verification, settlement, or auditability

These outputs are intended to be detached from raw receipt contents and personal identity wherever feasible. Even so, no data architecture can eliminate all theoretical reidentification risk in every context, especially where very small cohorts, narrow predicates, or public blockchain activity are involved.

10. On-Chain and Verifiable Systems

Where blockchain or other verifiable systems are used, Crinkl publishes only the minimum metadata we determine is needed for verification, settlement, proof, or auditability.

We do not place names, email addresses, raw receipt images, or full OCR text on-chain.

If you use wallet-connected or blockchain-based features, please understand:

• Public blockchain addresses and transactions may be visible to others
• Public blockchain data may be persistent
• Third parties may be able to observe, analyze, or link public addresses and activity using information outside of Crinkl's control

We aim to minimize what is published and to avoid publishing identity information on-chain, but public blockchain activity may still be observable.

11. Receipt Images, Redaction, and 45-Day Retention

Receipt image redaction is a technology under development and cannot guarantee complete removal of all personal information.

Receipt images are used for purposes including:

• OCR extraction
• Verification and decisioning
• Fraud prevention and abuse detection
• Internal reconciliation or linking of related submissions
• User-requested review, edits, or corrections during the retention window

As part of these functions, receipt images and related extracted data may be processed by service providers and contractors acting on our behalf, including AI, OCR, and machine-learning providers used for extraction, classification, and verification support.

Receipt images are:

• Not distributed to partners for their own marketing or profiling use
• Not published on-chain
• Not intentionally used to build third-party advertising profiles

Receipt images are stored temporarily and retained for up to 45 days, after which they are deleted or otherwise made inaccessible in the ordinary course of our system operations, subject to backup, disaster recovery, legal hold, or security requirements.

Redaction attempts may be applied to certain verified receipts, but users should not assume that all personal information is fully removed. Users are encouraged to review receipt images within the app during the retention window and avoid submitting receipts that contain information they do not want processed.

12. Client-Side Storage and Local Security

On supported clients, certain values may be stored locally on your device or browser to support functionality, security, or privacy-preserving features.

For example:

• Certain sensitive values, such as reward secrets or blinders, may be encrypted locally and stored in client-side storage mechanisms such as IndexedDB
• Limited preferences, such as reward preference, notification state, or a device identifier, may be stored locally, including through browser storage such as localStorage

Client-side storage is controlled in part by your device, browser, and app environment. If you clear local storage or reset your device or browser, some functionality may be affected.

13. Data Retention

We retain information only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Service, maintain integrity and security, issue rewards, investigate fraud, resolve disputes, comply with legal obligations, and preserve records needed for auditability.

Retention varies by category:

• Receipt images: retained for up to 45 days, then deleted or made inaccessible in the ordinary course, subject to backup, legal hold, or security requirements
• Extracted receipt text and derived receipt attributes: retained as long as needed to support verification records, fraud prevention, duplicate detection, reward issuance, internal reconciliation, dispute handling, system integrity, auditability, and legal compliance
• Account, wallet, and preference data: retained until you delete your account or as long as needed to provide the Service, operate reward-related features, maintain records, and comply with law
• Support communications: retained as long as reasonably needed to respond to your request, improve support, preserve records, or comply with law
• Security, fraud, and application logs: retained as long as reasonably necessary for debugging, abuse prevention, incident response, system integrity, and legal compliance

Aggregated information or information no longer reasonably associated with your account may be retained longer where permitted by law.

Not all retention or deletion timelines are user-configurable at this time.

14. User Controls and Requests

Depending on how you use the Service, you may be able to:

• Access and update certain profile information
• Manage notification settings
• Disconnect optional features or integrations
• Request deletion of your account and associated data, subject to operational, security, fraud-prevention, auditability, backup, and legal constraints
• Opt out of optional uses that are not required to provide the Service, where such options are offered

Requests may be made through in-app controls or by contacting support at support@crinkl.xyz.

15. U.S. State Privacy Rights

Depending on where you live, you may have rights under applicable U.S. state privacy laws, including rights to request access to, correction of, deletion of, or portability of certain personal information, and rights to opt out of certain uses or disclosures of personal information.

If you are a California resident, you may also have rights related to:

• Knowing what categories of personal information we collect, use, disclose, sell, or share
• Requesting deletion of certain personal information
• Requesting correction of certain personal information
• Opting out of sale or sharing, if applicable
• Limiting certain uses of sensitive personal information, if applicable
• Not being discriminated against for exercising applicable privacy rights

To exercise applicable rights, contact us at support@crinkl.xyz or use any in-app tools we make available for that purpose.

We may need to verify your request before acting on it. In some cases, we may deny or limit a request where permitted by law, including where necessary to protect security, prevent fraud, complete a transaction you requested, maintain required records, or comply with legal obligations.

16. Rewards and Incentive Programs

Crinkl may offer rewards, commitments, or other benefits tied to verified spend or participation in certain features.

To administer these programs, we may use receipt and verification data, account data, wallet-related data, and eligibility signals.

If applicable law requires a separate notice describing any financial incentive or bona fide loyalty program tied to personal information, we may provide that notice separately. California residents should review our California Notice of Financial Incentive below.

17. Security Practices

We use reasonable administrative, technical, and organizational safeguards designed to protect information, including measures such as:

• Encryption in transit
• Access controls
• Scoped internal services
• Logging, monitoring, and security review for system integrity
• Fraud and abuse detection controls

No system can guarantee absolute security, and no transmission or storage method is completely secure.

18. Children's Privacy

Crinkl is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information to us, contact us and we will take appropriate steps consistent with applicable law.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we may provide notice through the Service, in-app, by email where appropriate, or by updating the "Last Updated" date above.

Your continued use of the Service after an updated Privacy Policy becomes effective is subject to the revised policy.

20. Contact Us

If you have questions about this Privacy Policy or want to submit a privacy-related request, contact us at:

Email: support@crinkl.xyz

Commerce produces facts. Crinkl is designed to make them more portable, more verifiable, and less dependent on personal identity.