Rome HQ · Via Cassaro 28 · Mon–Fri 09:00–19:00 CET
IT|EN|DE|ES
VAT: IT16741601005LEI: 815600C1445C88E74827REA: RM RA000407HQ: Rome, Italy
HomeAboutBlockchain ForensicsCryptocurrency RecoveryExpert WitnessFAQCase StudiesOpen a Case
Home / Privacy Policy

Privacy Policy

Information notice under Regulation (EU) 2016/679 ("GDPR") and Italian Legislative Decree 196/2003 as amended by Legislative Decree 101/2018.

1. Data Controller

BLOCKCHAIN RUSH S.R.L.
Via Cassaro, 28 · 00132 Rome (RM) · Italy
VAT / CF 16741601005
Email: [email protected]
PEC: [email protected]

2. Categories of data collected

We collect personal data when you:

  • Fill out the contact form — first name, last name, email, phone, firm/company, case type, amount, and description.
  • Send us email — email address, message content, any attachments.
  • Sign a professional engagement — identity documents, fiscal code, bank details for billing.
  • Browse the site — IP address, browser user agent, pages visited (technical logs). We do not use profiling or third-party analytics cookies.

3. Purposes and legal basis

PurposeLegal basis
Responding to inquiriesArt. 6(1)(b) — pre-contractual measures
Service deliveryArt. 6(1)(b) — contract performance
Tax and accounting obligationsArt. 6(1)(c) — legal obligation
Fraud preventionArt. 6(1)(f) — legitimate interest
Website security (logs)Art. 6(1)(f) — legitimate interest

4. Retention periods

  • Unclosed contact inquiries: 12 months.
  • Professional engagement data: 10 years from relationship closure (art. 2220 Italian Civil Code).
  • Tax data: 10 years (legal obligation).
  • Technical access logs: 6 months.

5. Recipients

Data may be disclosed to:

  • Authorised personnel (analysts, experts, accountants).
  • External advisors bound by professional secrecy (accountant, lawyer).
  • Judicial authorities, law enforcement, and supervisory authorities upon legitimate request.
  • Technical providers (hosting, email, backup) designated as Data Processors under art. 28 GDPR.

We do not sell or share data for marketing purposes.

6. Extra-EU transfers

Our servers and email systems are located in the European Economic Area. Any transfers to third countries occur exclusively on the basis of European Commission adequacy decisions or Standard Contractual Clauses (SCC) adopted under art. 46 GDPR.

7. Data subject rights

Under articles 15-22 of the GDPR, you have the right to:

  • Access your personal data.
  • Rectify inaccurate or incomplete data.
  • Erase data ("right to be forgotten") where no retention obligation applies.
  • Restrict processing in cases provided by art. 18.
  • Object to processing based on legitimate interest.
  • Data portability of the data provided.
  • Withdraw consent at any time.

To exercise these rights send a request to [email protected]. We will respond within 30 days.

8. Complaint to the Data Protection Authority

You always have the right to lodge a complaint with the Italian Data Protection Authority (Piazza Venezia 11, 00187 Rome — www.garanteprivacy.it).

9. Cookies

The site uses exclusively a technical session cookie (ic_lang) to store your language preference. We do not use profiling cookies, third-party analytics, or advertising tracking technologies.

10. Changes

This notice may be updated periodically. The current version is always available at this URL.

Last revised: 15 April 2026