← Back to Home

Privacy Policy

Last updated: April 8, 2026

1. Introduction

Novi P2P ("Novi", "we", "us", or "our") operates novip2p.com, a peer-to-peer cryptocurrency trading platform. This Privacy Policy describes how we collect, use, store, and protect your personal information when you access or use our services.

By creating an account or using the Platform, you acknowledge that you have read, understood, and agree to the data practices described in this policy. If you do not agree, please do not use the Platform.

2. Information We Collect

2.1 Information You Provide Directly

When you register for or use the Platform, you may provide:

  • Account Information: Name, email address, username, and password (hashed)
  • Profile Information: Optional profile picture, bio, and trading preferences
  • Payment Method Details: Payment method names, account identifiers, and instructions (stored encrypted)
  • Wallet Information: Cryptocurrency wallet addresses linked to your account
  • Communication Data: Messages sent through our encrypted trade chat system
  • Support Requests: Information you provide when contacting our support team

2.2 Information Collected Automatically

When you access the Platform, we automatically collect:

  • Device Information: Device type, operating system, browser type, and device fingerprint
  • Usage Data: IP address, pages visited, features used, and time spent on the Platform
  • Location Data: Approximate geographic location derived from your IP address
  • Session Data: Login timestamps, session duration, and authentication tokens
  • Security Events: Login attempts, device registrations, and suspicious activity flags

2.3 Transaction & Trading Data

We collect detailed records of your trading activity, including offers created, trades initiated and completed, payment confirmations, escrow transactions, dispute records, and any associated cryptocurrency transaction hashes.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Platform Operation: Facilitate peer-to-peer trades, manage escrow, process transactions, and maintain your account
  • Authentication & Security: Verify your identity, enable two-factor authentication, register trusted devices, and calculate risk scores
  • Fraud Prevention: Detect, investigate, and prevent fraudulent, abusive, or unlawful activity on the Platform
  • Communications: Send transaction confirmations, security alerts, platform updates, and respond to support inquiries
  • Legal Compliance: Meet our obligations under applicable laws, including anti-money laundering (AML) requirements and responses to lawful governmental requests
  • Platform Improvement: Analyze usage patterns, troubleshoot issues, and improve features and user experience
  • Dispute Resolution: Investigate and resolve trade disputes, including reviewing chat logs and transaction evidence

4. Information Sharing and Disclosure

4.1 With Your Trading Counterparty

Your public profile (username, reputation score, completed trade count) is visible to all users. When you enter a trade, your payment method details and chat messages are shared only with your direct trading counterparty.

4.2 With Service Providers

We share data with trusted third-party service providers strictly as necessary to operate the Platform, including:

  • Cloud hosting and database infrastructure providers
  • Email delivery and notification services
  • Payment processing (for Premium subscriptions via Stripe)
  • Security and fraud detection tools
  • Analytics and error monitoring services

All service providers are bound by contractual data processing agreements and may only use your data for the purposes we specify.

4.3 Legal and Regulatory Obligations

We may disclose your information when required by applicable law or in good-faith belief that disclosure is necessary to: comply with a court order, subpoena, or legal process; respond to law enforcement requests; protect the rights and safety of Novi, our users, or the public; or enforce our Terms of Service.

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of all or substantially all of our assets, your information may be transferred to the successor entity. We will notify you via email or Platform notice before such a transfer occurs.

5. Data Security

We implement industry-standard technical and organizational security measures:

  • Encryption in Transit: All data exchanged between your device and our servers is protected using TLS/SSL encryption
  • Encryption at Rest: Sensitive data (passwords, payment details, chat messages) is encrypted using AES-256
  • End-to-End Encrypted Chat: Trade communications are end-to-end encrypted between counterparties
  • Access Controls: Internal access to personal data is restricted on a strict need-to-know basis
  • Two-Factor Authentication: Optional 2FA with TOTP for enhanced account security
  • Device Fingerprinting: Trusted device management detects and flags unauthorized login attempts
  • Continuous Monitoring: Automated monitoring for anomalous activity and potential breaches

While we take reasonable steps to protect your information, no system is completely impenetrable. You are responsible for keeping your login credentials and 2FA codes secure.

6. Data Retention

We retain your data only as long as necessary for the purposes outlined in this policy:

  • Account data: Retained while your account is active, plus 7 years following account closure (for AML compliance)
  • Transaction records: 7 years from trade completion (regulatory requirement)
  • Trade chat messages: 2 years after trade completion
  • Security and access logs: 3 years
  • Support tickets: 3 years after resolution

You may request deletion of your account and associated data, subject to legal retention obligations that override deletion requests.

7. Your Privacy Rights

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal data (subject to legal retention requirements)
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to certain processing activities, including direct marketing
  • Restriction: Request that we limit how we process your data in certain circumstances
  • Withdraw Consent: Withdraw consent for processing activities that are consent-based

To exercise any of these rights, contact us at support@novip2p.com. We will respond within 30 days.

8. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for authentication, session management, and Platform security — cannot be disabled
  • Analytics Cookies: Help us understand how users interact with the Platform so we can improve it
  • Preference Cookies: Remember your settings, language, and display preferences

You can manage non-essential cookies through your browser settings. Disabling certain cookies may impact Platform functionality.

9. International Data Transfers

Our infrastructure is primarily located in the United States. If you access the Platform from outside the U.S., your data will be transferred to and processed in the U.S. and potentially other countries. We implement appropriate safeguards — including standard contractual clauses — to protect your data during international transfers in accordance with applicable law.

10. Children's Privacy

The Platform is not directed at or intended for use by individuals under 18 years of age. We do not knowingly collect personal information from minors. If we become aware that a user is under 18, we will immediately suspend that account and delete all associated data. If you believe a minor has registered, contact us at support@novip2p.com.

11. Third-Party Links and Services

The Platform may contain links to or integrations with third-party websites or services (such as wallet providers). We are not responsible for the privacy practices or content of these external services. We encourage you to review their respective privacy policies before providing any personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you via email and/or a prominent notice on the Platform at least 14 days before the change takes effect. The "Last updated" date at the top of this page reflects the most recent revision. Your continued use of the Platform after changes take effect constitutes your acceptance of the updated policy.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

General & Privacy Inquiries: support@novip2p.com

Legal Matters: legal@novip2p.com

14. GDPR — European Users

If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data in accordance with the General Data Protection Regulation (GDPR). Our legal bases for processing include:

  • Contract Performance: Processing necessary to provide the Platform services you have requested
  • Legal Obligation: Compliance with AML, sanctions, and other applicable laws and regulations
  • Legitimate Interests: Fraud prevention, platform security, and service improvement
  • Consent: Where you have explicitly opted in (e.g., marketing communications)

You have the right to lodge a complaint with your local data protection supervisory authority if you believe your rights under GDPR have been violated.

15. California Privacy Rights — CCPA

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to know what personal information is collected and how it is used
  • Right to know if personal information is sold or disclosed, and to whom
  • Right to opt out of the sale or sharing of personal information
  • Right to deletion of personal information (subject to exceptions)
  • Right to correct inaccurate personal information
  • Right to limit use of sensitive personal information
  • Right to non-discrimination for exercising CCPA/CPRA rights

Note: Novi does not sell your personal information to third parties. To submit a California privacy rights request, contact support@novip2p.com.

By using Novi, you acknowledge that you have read, understood, and agree to this Privacy Policy.