CryptoPassportPASS · Public Funding Round← Back

Legal

Privacy Policy

Last updated: May 3, 2026

1. Overview

CryptoPassport Protocol ("we," "us," "the Protocol") respects your privacy and is committed to protecting the personal data you share with us. This Privacy Policy explains how we collect, use, store, and protect information when you interact with the PASS Public Funding Round platform (the "Platform") and our related services.

Web3-native approach: We collect the minimum data necessary. Your wallet interactions remain pseudonymous and on-chain by default.

2. Information We Collect

2.1 On-Chain Data (Public)

When you interact with the Platform, the following on-chain data is inherently public on the blockchain:

  • Wallet addresses (EVM-compatible addresses used for contributions and claims).
  • Transaction hashes, amounts, and timestamps.
  • Token allocation and claim status.

This data is recorded on public blockchains and cannot be modified or deleted by us.

2.2 Off-Chain Data (Platform)

We may collect the following data through our platform infrastructure:

  • Connection metadata: Wallet provider type (e.g., MetaMask, Rabby), connected chain ID.
  • Transaction records: Contribution details stored in our database for verification and allocation purposes.
  • Communication data: Email address and message content if you contact our support team.

2.3 What We Do NOT Collect

  • We do not collect your real name, physical address, phone number, or government ID.
  • We do not use cookies for advertising or tracking purposes.
  • We do not access or store your private keys or seed phrases.
  • We do not sell, rent, or trade your data to third parties.

3. How We Use Your Data

We use the collected data exclusively for:

  • Transaction verification: Confirming on-chain contributions and allocating PASS tokens.
  • Token distribution: Processing claims via Merkle proof distribution at TGE.
  • Platform operation: Displaying your allocation, contribution history, and claim status.
  • Security: Detecting fraudulent transactions, preventing abuse, and protecting platform integrity.
  • Support: Responding to your inquiries and troubleshooting technical issues.
  • Legal compliance: Meeting regulatory obligations where applicable.

4. Data Storage & Security

We implement industry-standard security measures to protect your data:

  • Off-chain data is stored on encrypted, access-controlled databases (Supabase with row-level security).
  • API communications are encrypted via TLS/HTTPS.
  • Administrative access is restricted to authorized personnel with multi-factor authentication.
  • Smart contract interactions are verified through on-chain event logs.
On-chain data is immutable by design. Once recorded on a blockchain, transaction data cannot be modified or erased, regardless of any data deletion request.

5. Data Retention

Off-chain contribution records are retained for the duration of the Protocol's operation and for a minimum of 5 years thereafter, as required for financial record-keeping and regulatory compliance. Communication records (support emails) are retained for 2 years.

6. Third-Party Services

The Platform interacts with the following third-party services:

  • Blockchain networks: Ethereum (and potentially other EVM-compatible chains) for transaction processing.
  • Wallet providers: MetaMask, Rabby, Phantom, and other Web3 wallets for authentication and transaction signing.
  • Price oracles: For real-time asset price conversion (ETH/USD, USDT, USDC).
  • Hosting infrastructure: Cloud hosting for platform availability and performance.

We do not control how these third-party services handle your data. We encourage you to review their respective privacy policies.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the off-chain data we hold about your wallet address.
  • Correction: Request correction of inaccurate off-chain records.
  • Deletion: Request deletion of off-chain data, subject to legal retention requirements.
  • Portability: Request your data in a structured, machine-readable format.
Important: On-chain data (wallet addresses, transactions, token allocations) is publicly recorded on the blockchain and cannot be modified or deleted by any party, including us. This is a fundamental property of blockchain technology.

8. Children's Privacy

The Platform is not intended for use by individuals under the age of 18. We do not knowingly collect data from minors. If you believe a minor has participated in the Sale, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable regulations. Material changes will be communicated through the Platform. The "Last updated" date at the top of this page indicates when the policy was last revised.

10. Contact Us

For any privacy-related questions, data requests, or concerns: