Fypher← Back to app

Privacy Policy

Last updated: June 21, 2026

This Privacy Policy explains how Fypher (“we,” “us,” or “our”) collects, uses, discloses, and safeguards information when you use our websites, applications, and services (the “Services”). By using the Services, you agree to this Policy. Capitalized terms not defined here have the meaning given in our Terms of Service.

1. Information We Collect

We collect the following categories of information:

  • Blockchain and wallet information. Your public wallet address, transactions, balances, and other on-chain activity. Public blockchains are transparent and permanent; information recorded on-chain is outside our control.
  • Identity-verification (KYC) information. Where verification is required, information such as your name, date of birth, nationality, government-ID documents, and photographs, collected and processed by our verification provider.
  • Eligibility information. Attestations you provide (for example, confirming you are not a U.S. person and not in a restricted jurisdiction).
  • Usage and device information. IP address, approximate location, browser and device type, pages viewed, and interactions, collected via cookies and similar technologies.
  • Communications. Information you provide when you contact us for support.

We do not collect your private keys or seed phrases, and we will never ask you for them.

2. How We Use Information

  • to provide, operate, maintain, and improve the Services;
  • to verify eligibility and identity and to comply with legal and regulatory obligations, including AML, sanctions screening, and fraud prevention;
  • to monitor, secure, and troubleshoot the Services and prevent abuse;
  • to communicate with you, including about support and changes to the Services; and
  • where you have consented, for analytics, personalization, and marketing (see Cookies below).

3. Cookies and Similar Technologies

We use cookies and similar technologies for strictly necessary functions (which are always on) and, subject to your consent, for analytics, personalization, and targeted advertising. You can set your preferences through our cookie banner at any time, and you may continue with only necessary cookies. Where required (for example, under EU/UK law), non-essential cookies are used only after you opt in.

4. How We Share Information

We do not sell your personal information. We may share information with:

  • Service providers who process information on our behalf, including custody and stablecoin-issuance providers (e.g. BitGo), yield-strategy and reserve providers (e.g. Concrete), wallet-authentication providers (e.g. Privy), identity-verification providers (e.g. Sumsub), infrastructure, and analytics providers;
  • Legal and regulatory authorities where required by law, subpoena, or to protect rights, safety, and the integrity of the Services; and
  • Successors in connection with a merger, acquisition, financing, or sale of assets.

Each provider processes your information under its own privacy terms.

5. International Transfers

We and our providers may process information in countries other than where you reside, which may have different data-protection laws. Where required, we implement appropriate safeguards for such transfers.

6. Data Retention

We retain information for as long as necessary to provide the Services and to comply with our legal, regulatory, tax, accounting, and recordkeeping obligations (which, for identity and transaction records, may be several years), after which we delete or anonymize it.

7. Security

We maintain technical and organizational measures designed to protect information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for safeguarding your wallet and credentials.

8. Your Rights

Depending on your location, you may have rights to access, correct, delete, or port your personal information, to object to or restrict certain processing, and to withdraw consent. If you are in the EEA/UK, these rights arise under the GDPR; if you are in California, the CCPA/CPRA provides rights including access, deletion, and to opt out of “sharing” for cross-context behavioral advertising. To exercise your rights, contact us using the details below; we may need to verify your identity. Note that information recorded on a public blockchain cannot be altered or deleted by us.

9. Children

The Services are not directed to anyone under 18, and we do not knowingly collect information from children. If you believe a child has provided us information, please contact us.

10. Third-Party Links

The Services may link to third-party sites and applications that we do not control. This Policy does not apply to them, and we are not responsible for their practices.

11. Changes to this Policy

We may update this Policy from time to time. The “Last updated” date reflects the latest version, and material changes will be communicated through the Services where appropriate.

12. Contact

For privacy questions or to exercise your rights, contact privacy@fypherfi.com.