1. Introduction
John Kruger Crypto Law Firm (“we,” “us,” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in compliance with the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). By using our services, you agree to the terms outlined below.

2. Information We Collect
We may collect the following data to provide legal, tax, and compliance services:
  • Personal Identifiers: Name, email, phone number, physical address.
  • Financial & Crypto Data:
  • → Wallet addresses, transaction IDs, public/private keys (if voluntarily shared).
  • → Tax documents (e.g., IRS Form 8949, FTB filings).
  • → DeFi/NFT transaction histories.
  • Technical Data: IP address, browser type, device information, cookies (via tools like Google Analytics).
  • Sensitive Data: Government-issued IDs (for KYC/AML compliance).

3. How We Use Your Information
We process your data for:
  • Service Delivery: Preparing tax filings, resolving IRS/FTB disputes, and providing legal advice.
  • Communication: Responding to inquiries, sending compliance updates.
  • Security: Preventing fraud, unauthorized access, or cyberattacks.
  • Legal Obligations: Meeting regulatory requirements (e.g., FinCEN, CCPA).

4. Data Sharing & Third Parties
We may share your information with:
  • Regulatory Bodies: IRS, FTB, or law enforcement agencies (when legally required).
  • Service Providers:
  • → Cloud storage (AWS, Google Workspace).
  • → Tax software (CoinTracker, TurboTax Crypto).
  • → Payment processors (Stripe, PayPal).
  • Legal Partners: Co-counsel or expert witnesses (with your consent).
We do not sell your data to third parties.

5. Your Rights
Under GDPR and CCPA, you have the right to:
  • Access: Request a copy of your personal data.
  • Rectification: Correct inaccurate information.
  • Deletion: Ask us to erase your data (exceptions apply for legal compliance).
  • Opt-Out: Object to processing or withdraw consent (email [DPO Email]).
  • Portability: Receive your data in a machine-readable format.
CCPA-Specific Rights:
  • Know categories of data collected and purposes.
  • Non-discrimination for exercising rights.
To exercise these rights, contact our Data Protection Officer (DPO) at [DPO Email] or [Phone].

6. Data Security
We implement industry-standard measures to protect your data:
  • Encryption: AES-256 for stored data, SSL/TLS for transfers.
  • Access Controls: Role-based permissions for staff.
  • Audits: Annual penetration testing and compliance reviews.

7. International Data Transfers
Data may be transferred outside the EU/EEA to U.S.-based servers. We ensure GDPR compliance via:
  • Standard Contractual Clauses (SCCs) with third parties.
  • Privacy Shield-certified partners (where applicable).

8. Retention Period
We retain your data for:
  • Active Clients: Duration of service + 7 years (IRS requirement).
  • Prospects: 2 years after last contact.

9. Updates to This Policy
We may update this policy to reflect legal changes. Updates will be posted on our website with a revised “Last Updated” date.

10. Contact Us
For GDPR/CCPA requests or questions:
John Kruger Crypto Law Firm
1150 Olive Street, Los Angeles, CA
office@johnkruger.pro

CCPA Notice: California residents may contact us toll-free at [Number].
This policy applies solely to John Kruger Crypto Law Firm and not to third-party websites linked on our platform.
Made on
Tilda