Privacy policy

This privacy policy applies to ff-io.io (the "FF platform", "we", "us"). By using the platform you agree to the terms below. If you disagree, please discontinue use of the service.

1. What we collect

FixedFloat is a non-custodial cryptocurrency exchange and intentionally collects the minimum amount of data required to deliver the service safely:

• Order data. The currency pair, the amount, the deposit and destination wallet addresses, the transaction hashes, and the order timestamps.
• Technical data. Browser user-agent, IP address (truncated), language preference, and the referrer URL — used for fraud prevention, abuse mitigation and product analytics.
• Optional account data. If you create an account (only required for the affiliate dashboard or API access), we collect the email you provide and a hashed password.
• Communications. If you contact our support team, we keep the message contents and your contact data in the support ticket.

2. What we do not collect

• We do not collect government-issued IDs, names or dates of birth for standard exchange pairs.
• We do not collect bank account or credit card data — FixedFloat does not process fiat.
• We do not collect biometric data.
• We do not run third-party advertising trackers on the FF platform.

3. How we use data

The data above is used exclusively to:

• Process your exchange order and broadcast the on-chain payout.
• Detect and prevent fraud, abuse and suspicious activity.
• Comply with legitimate legal requests where applicable.
• Improve the platform — debug issues, optimize routing, plan listings.
• Communicate with you about your specific order, if needed.

4. AML monitoring

The FF platform runs incoming wallet addresses through industry blockchain analytics tools to flag funds linked to sanctioned addresses, confirmed darknet markets or proceeds of public hacks. This is done at the time of each exchange. The result of the check is stored alongside the order metadata and is shared only when legally required.

5. Cookies

FixedFloat uses only essential cookies:

• A language preference cookie so the site remembers your selected language across sessions.
• A cookie consent cookie that records whether you accepted or declined the cookie banner.
• A short-lived session cookie that secures account-protected pages (affiliate dashboard, API).

We do not use Google Analytics or any other third-party advertising tracker.

6. Data retention

Order data is retained for as long as required to satisfy our internal record-keeping policy and any applicable legal obligation. Technical logs are pruned on a rolling basis (typically within 90 days). Optional account data is retained until you delete the account.

7. Your rights

If you are based in the European Union, the United Kingdom, California or another jurisdiction with applicable privacy law, you have rights including the right to access, the right to rectification, the right to erasure, the right to restriction of processing, the right to data portability and the right to object. To exercise any of these rights, contact privacy@ff-io.io.

8. International transfers

Data may be processed in jurisdictions other than your own. We rely on industry-standard safeguards (encryption in transit, encrypted storage, contractual data-processing agreements) to protect data wherever it is processed.

9. Changes to this policy

We may update this privacy policy as the FF platform evolves. The current version always lives at this URL with a "last updated" date. Material changes will be announced on the FixedFloat blog.

10. Contact

For privacy questions, write to privacy@ff-io.io. For security issues, write to security@ff-io.io. For general support use the contact page.