Bitcoin logo$63,016.03+0.71%
OverviewPrivacy Policy

Privacy Policy

Last updated 28 May 2026

The short version

Maketo is a free, education-only Bitcoin information site. Nobody has to sign up to read it.

We use Google Analytics to understand how the site is used, and our hosting platform records standard request metadata (the same kind any website you visit collects). We do not sell your data, we do not share it for advertising, and we do not profile readers.

If you have any question about your data, email privacy@maketo.com.

What we collect

Hosting / request metadata. When your browser requests a page from maketo.com, our hosting platform records standard request metadata: IP address, user-agent string, requested URL, referrer, and timestamp. We use that data to serve the site, debug errors, and detect abuse (denial-of-service, scraping, credential stuffing). Legal basis (GDPR / UK GDPR): legitimate interest under Art. 6(1)(f).

Google Analytics. We use Google Analytics 4 to understand which pages are read, where readers come from, and how the site is performing in aggregate. Google Analytics sets cookies on your device and sends usage data to Google. IP addresses are anonymised before storage, advertising features are disabled, and we configure Google Analytics with a short retention window. Legal basis: consent (GDPR Art. 6(1)(a)) for readers in the EEA and UK; legitimate interest elsewhere. You can opt out at any time by using your browser’s tracking-protection or by installing the Google Analytics opt-out browser add-on (tools.google.com/dlpage/gaoptout). We honour the Global Privacy Control browser signal as an opt-out.

Inbound email. If you email us at privacy@maketo.com, we keep the message so we can reply and so we have a record of your request. Legal basis: legitimate interest, plus contract performance for requests we’re legally obliged to action (such as a data-subject access request).

Feedback form. If you send us a message through our feedback form at /feedback, we collect whatever you put into the form: the topic, your message, and — if you choose to provide them — your name, email, company, and the URL of the page you were on. We use that information to read your message and reply if appropriate. The email is delivered to us through our email provider, Resend. Legal basis: consent (you tick a box before submitting) and legitimate interest in operating a contact channel.

Promotional emails. If you provide an email address through the feedback form, we may occasionally email you with product updates, new features, or other Maketo news. You can opt out at any time by replying with the word STOP, or by emailing privacy@maketo.com. We don’t share your email with anyone else for marketing.

Nothing else. We do not run an account system, a favourites feature, a wallet integration, or any other mechanism that would collect data about you specifically. There is no sign-up flow; the only way Maketo learns anything about you personally is if you choose to send us a message. If that changes, we’ll update this policy first.

Cookies

Maketo itself does not set advertising or tracking cookies. The cookies that may be present when you visit the site fall into two categories:

  • Strictly necessary technical cookies. Set by our hosting platform to serve pages reliably (for example, edge-routing or anti-abuse cookies). These are not used to track or profile you across sites.
  • Analytics cookies. Set by Google Analytics to measure site usage as described above. You can refuse or clear these via your browser settings, or via the Google Analytics opt-out add-on.

Anti-spam protection

To stop bots and abuse on our feedback form, we use Cloudflare Turnstile in invisible mode. When you load the form, Turnstile runs a silent challenge in your browser to confirm you’re a human before allowing submission. There is no checkbox or puzzle to click; in most cases you won’t notice it.

Turnstile may collect minimal session information from your browser to make that determination, including your IP address, user-agent string, and basic behavioural signals. Cloudflare processes this data on our behalf to deliver the anti-bot service. Their processing is governed by Cloudflare’s Privacy Policy. We do not see or store Turnstile’s raw signals; we only receive a pass/fail verdict.

Third parties

Maketo relies on a small number of standard service providers to host the site, measure traffic (Google Analytics, named above), and produce some of the content you see. We don’t share visitor data with our content partners or with anyone else for advertising, marketing, or resale.

The subprocessors directly relevant to data you might send us: Resend delivers the email when you submit the feedback form, and Cloudflare runs the Turnstile anti-bot check on that same form. Both are bound by their own privacy commitments and process the data only to provide the service to us.

Where we use AI models server-side to score and rank publicly available news content, no visitor data is sent to those AI services and nothing about you is used to train any model.

How long we keep things

  • Hosting / access logs: retained on the hosting platform’s standard rolling schedule (approximately 30 days), accessible only to the operator.
  • Google Analytics data: retained for up to 14 months, after which it is deleted by Google according to its policies.
  • Inbound emails: kept for up to 24 months, then deleted on a rolling basis. We may retain individual messages longer where we’re legally obliged to.
  • Feedback-form submissions: delivered to us as email and treated the same as inbound email — kept for up to 24 months, then deleted on a rolling basis.
  • Backups: encrypted, rotated on a roughly 35-day schedule.

International data transfers

Some of our service providers are based outside the EEA or UK, including in the United States. Where personal data is transferred from the EEA or UK to a third country, we rely on (i) the EU-US Data Privacy Framework or its UK Extension where the recipient is certified, and/or (ii) the European Commission’s Standard Contractual Clauses (and the UK International Data Transfer Addendum), which contractually require the recipient to protect your data to a standard equivalent to EU/UK law. We will update this section if the legal basis for these transfers changes.

Your rights

If you are in the EEA or UK, you have the rights granted by the GDPR and the UK GDPR: to access your data, to correct it, to ask us to erase it, to restrict or object to processing, to data portability, to withdraw consent (where consent is the basis), and to lodge a complaint with a supervisory authority — the UK Information Commissioner’s Office (ico.org.uk) for the UK, or your local Member-State data-protection authority for the EEA (the EDPB lists them at edpb.europa.eu).

If you are a California resident, you have rights under the CCPA / CPRA: to know what personal information we collect, to delete it, to correct it, to opt out of the “sale” or “sharing” of personal information, to limit the use of sensitive personal information, and not to be discriminated against for exercising any of these rights. We do not sell personal information, and we do not collect sensitive personal information. We honour the Global Privacy Control browser signal as an opt-out request.

If you live in another US state with a comprehensive privacy law (Virginia, Colorado, Connecticut, Texas, Utah, Oregon, Montana, Florida, Iowa, New Hampshire, New Jersey, Delaware, Tennessee, Minnesota, Maryland, Nebraska, Indiana, Kentucky, Rhode Island, and others), you have rights similar to those listed above.

To exercise any of these rights, email privacy@maketo.com. We aim to respond within 30 days, and in any case within 45 days as required by some US state laws. We may need to verify your identity (usually a reply from the email address on file is enough).

Children

Maketo is not directed to children under 16, and we don’t knowingly collect personal data from anyone under 16. If you are under 16, please don’t use Maketo. If we become aware that we have somehow collected personal data from a child under 16, we will delete it. If you believe we have data about a child, contact privacy@maketo.com.

Security

We follow standard practices for a small operator: traffic is served over TLS, the site does not expose a public JSON API, and access to operational systems is restricted. No system is perfectly secure, and we cannot guarantee that data will never be compromised. If we discover a personal-data breach, we will notify the relevant supervisory authority within 72 hours where required by law (GDPR Art. 33), and we will notify affected individuals directly without undue delay if the breach is likely to result in a high risk to your rights and freedoms (GDPR Art. 34).

What Maketo does not touch

Maketo is a market-intelligence and education site, not a wallet, exchange, or custodian. To be specific: we do not collect, request, or have any way to discover your Bitcoin addresses, your holdings, your transaction history, your seed phrase, or any other on-chain identity. We don’t hold cryptoassets on your behalf, and we do not provide any brokerage, custody, deposit, or settlement service.

If anyone claiming to be Maketo asks you for a wallet address, a seed phrase, a private key, or a payment to “verify your account” or unlock something — it is not us. Please report it to privacy@maketo.com.

Changes to this policy

We will update this Privacy Policy as Maketo evolves. The “Last updated” date at the top of this page will tell you when. For material changes (changes that affect your rights or how we use your data), we will post a notice on the site.

Contact

For any privacy question or to exercise any right described above, email privacy@maketo.com.