Our valued sponsor

Ordered Trezor Safe 5 online, check this statement?

cuno

Mentor Group Lifetime
Dec 21, 2021
309
154
43
Would you trust this statement when you place an order with them?
1726926945816.webp


They are a company placed in Prague which is Europe, do you believe they delete all your data after 90 days?
 
Would you trust this statement when you place an order with them?
View attachment 7816

They are a company placed in Prague which is Europe, do you believe they delete all your data after 90 days?

Considering GDPR, they may delete them. Though, if they delete customer's data, how will customer claim the warranty? Above that, they're statutorily obliged to keep financial records for certain period - probably above 5 years.
 
Considering GDPR, they may delete them. Though, if they delete customer's data, how will customer claim the warranty? Above that, they're statutorily obliged to keep financial records for certain period - probably above 5 years.
Exceptions apply for ongoing order-related issues. We are mandated to keep all invoice data for 10 years due to legal requirements. These invoices are kept in a separate environment as an encrypted backup.
For Payments:
FIAT : Data is stored by our third-party provider for up to 7 years.
Crypto : As per law, the third-party provider is obligated to retain all important data related to the transactions for 5 years after the termination of the relationship with Trezor.
Source : Privacy policy at Trezor
 
  • Like
Reactions: mraleph
the company is based in Czech republic and invoices (and other tax-related documents) must be archived for 10 years, period

I suppose what they claim is the fact that they don't keep your personal data in the online system (https://blog.trezor.io/trezor-e-shop-breach-is-a-hoax-d943ce267b66) but obviously it's still stored in the accounting database or paper form at least (due to the law)

either way when buying device like this online simply use fake personal details...
 
The problem is getting the device delivered to an address where you can pick it up, especially if it's not your own or a company address. For some people, that’s not so easy. But for those who can manage it, I completely agree that it’s the best solution.
either way when buying device like this online simply use fake personal details...
 
The problem is getting the device delivered to an address where you can pick it up, especially if it's not your own or a company address. For some people, that’s not so easy. But for those who can manage it, I completely agree that it’s the best solution.
be creative...
in many countries the delivery service drivers call you in advance - just use any suitable address and pick it up in person on the street
or let it delivered to your favorite local coffee shop
or use the forwarding service and pick it up in person at their dispatch hub
 
The problem is getting the device delivered to an address where you can pick it up, especially if it's not your own or a company address. For some people, that’s not so easy. But for those who can manage it, I completely agree that it’s the best solution.

If your country has amazon lockers . Buy a aged amazon account or make a new one (risky for higher purchases ) and use vcc's or gift cards to pay (gift cards only on aged accounts or for low amounts on new accounts to avoid account lock ) . Use a clean proxy and a good anti-detect browser . Test your fingerprints and check if anything is leaking (dns ,webrtc etc..) . Buy the item and deliver it to the amazon locker . Wear a mask and a cap when retrieving , because they have cams like ATM's.
There are also DHL lockers in some countries but they require mail address verification . You can probably buy verified accounts somewhere .
 
There are also DHL lockers in some countries but they require mail address verification . You can probably buy verified accounts somewhere .
This could possibly work if I an find any of these lockers.

Take a trip to Prague.
yeah that could be an option :)
 
I wonder if it's intentional that these devices can only be bought online, so they can track who buys them and where they’re used, making it possible to trace the device when it's loaded with crypto!

I assume that if they know who bought Trezor with serial number XYZ, they could later track its address on the blockchain and see if it’s been loaded with crypto?
 
  • Like
  • Wow
Reactions: GPT and turmpy
I wonder if it's intentional that these devices can only be bought online, so they can track who buys them and where they’re used, making it possible to trace the device when it's loaded with crypto!

I assume that if they know who bought Trezor with serial number XYZ, they could later track its address on the blockchain and see if it’s been loaded with crypto?
read this first User data protection

if you have (understandable) doubts of this kind then practically you're doomed and this device is not for you

it's sort of like being worried of buying a new keyboard as it can very easily have an LTE modem / simcard integrated and sending all your keystrokes to the remote server of an adversary company
or how about buying a USB flashdrive which can be actually a plug&play keyboard that immediately starts sending keystrokes to your system

I know both guys who founded Trezor, good lads, true anarchokapitalists and freedom-oriented - I not always agree with what decisions they make but it's not my business (literally) - anyways there is very little chance of then being malicious actors... at the same time it doesn't mean that the company can't be attacked by any means
 
I know both guys who founded Trezor, good lads, true anarchokapitalists and freedom-oriented - I not always agree with what decisions they make but it's not my business (literally) - anyways there is very little chance of then being malicious actors... at the same time it doesn't mean that the company can't be attacked by any means
I've read many of your posts and others', and whenever it comes to being paranoid, you're always one of the first, along with others, to raise the alarm. Now that you know the people behind Trezor, your attitude changes, and that explains why you're such a strong advocate for this device!

That being said, I couldn’t care less whether you or some average Joe knows those guys. If there's enough money or pressure on the table, everyone talks, and they’ll release data too.

The comparison you've just described is something I'll refer to in the future when you start criticizing others for their security questions and suggestions. It's so universal that it's the trump card here - it beats all answers and all solutions when it comes to securing data :)
 
  • Haha
Reactions: turmpy
I've read many of your posts and others', and whenever it comes to being paranoid, you're always one of the first, along with others, to raise the alarm.
perhaps

Now that you know the people behind Trezor, your attitude changes, and that explains why you're such a strong advocate for this device!
no
That being said, I couldn’t care less whether you or some average Joe knows those guys.
ok
If there's enough money or pressure on the table, everyone talks, and they’ll release data too.
maybe, that's way it's wise to have as little customer data as possible to minimize the surface for such an attack

The comparison you've just described is something I'll refer to in the future when you start criticizing others for their security questions and suggestions. It's so universal that it's the trump card here - it beats all answers and all solutions when it comes to securing data :)
be my guest ;)

there is always some trust involved - it's a question of economic calculation, I suggest to be as paranoid as possible where the cost is little and a qualified decision can be made) and to let it fully go where you can't do anything about whatsoever - it's a scale and your subjective decision, it can easily happen that one forgets to live in a pursuit of perfection
 
  • Like
Reactions: clemens
I realize a business opportunity here. Distributing things people don't want their name or address on.

If someone has a large network over many countries it could be a good business. Truth is, you can't trust any of these Trezor or Ledger people, your data is stored there for ever.
 
perhaps


no

ok

maybe, that's way it's wise to have as little customer data as possible to minimize the surface for such an attack


be my guest ;)

there is always some trust involved - it's a question of economic calculation, I suggest to be as paranoid as possible where the cost is little and a qualified decision can be made) and to let it fully go where you can't do anything about whatsoever - it's a scale and your subjective decision, it can easily happen that one forgets to live in a pursuit of perfection
It's all very good, I don't attack you, I just find it strange all of it. It is a clear picture your can't trust Trezor!

Also do you know if the crypto address this device may already have or generate once you take it in use is connected to your invoice you get when you purchase the device?