Privacy Policy

PayFlip is a mobile application for sending and receiving digital assets using an embedded smart wallet. This Privacy Policy explains what personal information PayFlip ("we", "us") collects when you use the App, why we collect it, how we use and share it, and the choices you have.

If you have any questions, email support@payflip.xyz.

We collect the following categories of information:

• Account information: your email address (and, for OAuth sign-ins, the email and name from your Google or Apple account). You provide this when you sign in.
• Wallet information: the public address of the embedded smart wallet provisioned for you. This is created automatically on first sign-in by our authentication partner, Privy.
• Profile information: optional display name and profile image, if you choose to set them.
• Preferences: your preferred chain and preferred token for receiving funds, and other App settings.
• Transaction metadata: records of the sends and receives you have made through the App, including counterparty addresses or emails, amounts, fee breakdowns, chain identifiers, transaction hashes, and timestamps. These records are stored to power your history view and to help support resolve issues.
• Device information: device model, OS version, and language; push-notification tokens (Firebase Cloud Messaging on Android, Apple Push Notification service on iOS) if you have enabled push.
• Network information: when your device communicates with our backend, we receive standard request metadata such as IP address, user-agent string, and timing — typically retained in short-lived server logs.
• Diagnostic logs: error and performance logs to operate and improve the App.

PayFlip does not collect your private signing key. Signing material is generated and held by Privy in their secure environment and never transmitted to PayFlip's servers.

We use the information we collect to:

• Provide the core App functionality — authenticate you, route and settle transactions, show balances and history, and deliver notifications you have asked for.
• Operate and protect the Service — investigate bugs, prevent abuse, mitigate fraud, comply with legal obligations including sanctions screening.
• Communicate with you — respond to support requests sent to support@payflip.xyz and inform you of important changes to the Service or these documents.
• Improve the App — understand aggregate usage patterns so we can prioritize fixes and features.

We do not sell your personal information. We do not use your information for advertising profiling.

The App relies on the following third-party providers. Each provider has its own privacy practices; their privacy policies apply alongside this one.

• Privy (authentication and embedded wallet): receives your email or OAuth identifier, and holds the signing material for your wallet. Without Privy, sign-in and signing do not work. Privacy policy: https://www.privy.io/legal/privacy-policy.
• Alchemy (RPC, gas sponsorship, bundling): receives the user operations submitted on your behalf, including the wallet address and call data. Alchemy does not receive your email. Privacy policy: https://www.alchemy.com/privacy-policy.
• Google or Apple (OAuth sign-in): if you sign in with Google or Apple, that provider authenticates you and shares your email and (optionally) name with Privy. PayFlip itself does not store the OAuth token. See https://policies.google.com/privacy and https://www.apple.com/legal/privacy/.
• Firebase Cloud Messaging / Apple Push Notification service: if you have enabled push notifications, the relevant service receives a device token that lets us send notifications. The token does not directly identify you on its own.
• CoinGecko (token prices): our backend fetches token prices from CoinGecko. CoinGecko does not receive any user-specific information from this lookup.
• Blockchain networks and bundlers: when you send funds, transaction data (including wallet addresses and amounts) is broadcast to the relevant blockchain. This data is public.
• Block explorers: when you tap "open in explorer" inside the App, you leave the App and your device communicates with the explorer. Explorer providers may log your IP address.
• Cloud infrastructure: routine cloud hosting and database providers used by our backend may process the same information described in this Policy, only as needed to run the Service.

We may also disclose information to law-enforcement or government authorities if required by law, court order, or to protect the safety of users or the public.

Information you broadcast to a public blockchain — including your wallet address, the addresses you transact with, and the amounts you send — is publicly visible to anyone in the world and cannot be removed. Anyone who learns your wallet address can see all activity associated with it.

If you share your PayFlip email handle with someone, they can resolve it to your wallet address through the App. Be thoughtful about whom you share your address or handle with.

We retain account information, wallet address, preferences, and transaction history for as long as your account is active. Diagnostic logs and short-lived request metadata are typically retained for a shorter period (for example, 30 to 90 days) and then deleted or aggregated.

If you delete your account, we will remove or anonymize personal information associated with it within a reasonable time, except where we are required to retain certain records for legal, compliance, fraud-prevention, or audit purposes. On-chain transaction data is outside our control and remains on the blockchain.

We use commercially reasonable safeguards to protect the information you provide, including encryption in transit (HTTPS), authentication required to access the App, and access controls on our internal systems.

No method of electronic storage or transmission is 100% secure. You play an essential role in protecting your account:

• Use a strong unique password and 2FA on your email account.
• Enable App Lock and biometrics inside PayFlip.
• Never share verification codes (OTPs) with anyone. PayFlip will never ask for an OTP.

Depending on where you live, you may have the right to:

• Request access to the personal information we hold about you.
• Request that we correct inaccurate information.
• Request deletion of your personal information, subject to limits required by law.
• Object to or restrict certain processing.
• Receive a copy of your personal information in a portable format.
• Withdraw consent where processing relies on consent.
• Lodge a complaint with the data-protection authority in your country.

To exercise any of these rights, email support@payflip.xyz. We may need to verify your identity before fulfilling the request. We aim to respond within 30 days.

Note that some information cannot be deleted without ending your ability to use the App (for example, your email or wallet address). And, as noted above, on-chain transaction data cannot be deleted by us.

PayFlip is not directed to children under 13 (or the applicable minimum age in your jurisdiction), and we do not knowingly collect personal information from them. If you believe a minor has provided information to us, please contact support@payflip.xyz and we will delete it.

PayFlip and its third-party providers may process information in countries other than your own. By using the App, you understand that your information may be transferred to, stored in, and processed in countries whose data-protection laws may differ from yours.

Where required by law (for example, when transferring personal data out of the European Economic Area, the UK, or Switzerland), we and our processors rely on appropriate safeguards such as Standard Contractual Clauses.

We may update this Privacy Policy from time to time. When we do, we will increase the version number and effective date at the top of this document. For material changes, we will ask you to review and re-accept inside the App.

For privacy questions, requests, or complaints, email support@payflip.xyz with the subject line "Privacy Request". We aim to respond within a few business days.