Privacy Policy

PurDEX Protocol ("PurDEX," "we," "us," or "our") is committed to protecting the privacy of our users ("you" or "your"). This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you access or use the PurDEX decentralized application, website, and related services (collectively, the "Services").

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

2.1 Information You Provide Directly

We collect information that you voluntarily provide when using our Services, including:

• Wallet addresses connected to the platform
• KYC verification data including name, email address, government-issued identification documents, and proof of address, as required for ERC-3643 compliance
• Contact information submitted through our contact forms (name, email, subject, message)
• Any other information you choose to provide

2.2 Information Collected Automatically

When you access our Services, we may automatically collect:

• Blockchain transaction data (which is publicly available on the Ethereum network)
• Device information (browser type, operating system, device identifiers)
• Usage data (pages visited, time spent, features used)
• IP address and approximate geographic location
• Cookies and similar tracking technologies

2.3 On-Chain Data

Please note that blockchain transactions are publicly visible and permanent. Any data stored on-chain, including wallet addresses and transaction histories, is inherently public and cannot be modified or deleted by PurDEX.

We use the collected information for the following purposes:

• To provide, maintain, and improve our Services
• To process and verify KYC submissions in compliance with ERC-3643 requirements and applicable regulations
• To register verified identities on the on-chain Identity Registry
• To enforce compliance rules through our BasicCompliance smart contract
• To respond to your inquiries and provide customer support
• To detect, prevent, and address fraud, security breaches, and technical issues
• To comply with legal obligations and regulatory requirements
• To analyze usage patterns and improve user experience

We do not sell your personal information. We may share your information in the following circumstances:

• Regulatory Compliance: We may share KYC data with regulatory authorities as required by applicable laws and regulations
• Service Providers: We may share data with third-party vendors who assist in operating our Services (e.g., KYC verification providers, cloud hosting)
• Legal Requirements: We may disclose information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements
• On-Chain Data: Data stored on the Ethereum blockchain is publicly accessible and cannot be restricted by PurDEX

We implement industry-standard security measures to protect your personal information, including:

• Encryption of sensitive data in transit and at rest
• Access controls and authentication mechanisms
• Regular security audits and vulnerability assessments
• Smart contract audits by independent security firms

However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. KYC data is retained in accordance with applicable anti-money laundering (AML) regulations.

On-chain data, including Identity Registry entries and transaction records, is permanent and cannot be deleted due to the immutable nature of blockchain technology.

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access: Request access to the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete personal data
• Deletion: Request deletion of your personal data, subject to legal retention requirements
• Portability: Request a copy of your data in a structured, machine-readable format
• Objection: Object to certain processing activities

Please note that certain rights may be limited with respect to on-chain data due to the immutable nature of blockchain technology.

We use cookies and similar technologies to enhance your experience, analyze site traffic, and understand usage patterns. You can control cookie preferences through your browser settings. Disabling cookies may limit certain features of our Services.

Your information may be transferred to, and maintained on, servers located outside of your jurisdiction. By using our Services, you consent to the transfer of your data to jurisdictions that may have different data protection laws than your own.

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete such information.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Services after any changes constitutes acceptance of the revised policy.

If you have any questions about this Privacy Policy or our data practices, please contact us at:

• Email: privacy@purdex.io
• Address: PurDEX Protocol, Zurich, Switzerland