Vailox - Privacy Policy

Last Modified: December 29, 2025

Last updated: December 2025

1. Introduction

This Privacy Policy (the “Policy”) describes how information is collected, used, stored, shared, and protected when users (“Users”, “you”) access, use, or interact with the Vailox Protocol web interface and related services (collectively, the “Services”).

The Vailox Protocol is a decentralized, open-source software application. This Policy applies specifically to the web interface available at vailox.com and any related platforms. The underlying smart contracts operate on public blockchain networks and are not subject to this Policy.

By accessing or using the Services, you acknowledge and accept this Policy.

2. Scope and Application

This Policy applies to data collected through:

  • The vailox.com website and related digital platforms
  • Contact or registration forms
  • Any other channel through which Users interact with the interface

This Policy does not apply to third-party websites, services, or platforms that Users may access through links from the interface. In such cases, the privacy policies of those third parties will apply.

3. Information We Collect

The following types of information may be collected:

a) Wallet Information

Public wallet addresses used to connect to the interface and interact with the Protocol. This information is necessary to facilitate transactions and verify user identity on-chain.

b) Profile Information

Username, avatar, and preferences that Users voluntarily provide when creating or customizing their profile.

c) Browsing and Usage Data

Device information, IP address, browser type, operating system, access logs, connection date and time, cookies, approximate location, and patterns of use or interaction with the interface.

d) Transaction Data

Information related to operations performed through the Protocol, including order history, trade counterparties, and other data necessary to provide the Services. Note that blockchain transactions are publicly visible on-chain.

e) Communications Data

Messages, inquiries, or claims sent by Users through support channels or the in-platform chat system.

Sensitive personal data is not requested or processed, except where strictly necessary for compliance with legal or contractual obligations.

4. Purposes of Data Processing

Personal data is processed for the following purposes:

  • To enable the creation and management of User accounts
  • To provide, operate, and improve the Services
  • To process transactions and operations through the Protocol
  • To comply with legal, regulatory, or contractual obligations
  • To prevent fraud, security incidents, and illicit activities
  • To manage inquiries, claims, or User requests
  • To perform statistical analysis, usage measurement, and service improvements
  • To send notifications, alerts, or communications related to the Services
  • To resolve disputes between transaction parties

The processing of User personal data is based on one or more of the following legal bases:

  • Contract execution: Processing is necessary to provide the Services or execute the terms accepted by the User
  • Legal obligations: When applicable regulations require the retention or disclosure of certain data
  • Consent: The User freely and expressly authorizes the processing of their data under the terms of this Policy
  • Legitimate interest: When necessary to ensure the security of the interface, prevent fraud, or improve the Services

6. Sharing of Data with Third Parties

Personal data may be shared only in the following cases:

  • Service providers: Companies that provide technological services, cloud storage, analytics, security, customer support, or operational assistance
  • Competent authorities: Public, judicial, or administrative bodies that require it in the exercise of their functions or in accordance with law
  • Transaction counterparties: Limited information (such as username and reputation) visible to other Users for the execution of P2P transactions

In all cases, third parties are required to comply with confidentiality obligations and appropriate security measures.

Personal data will not be sold, rented, or transferred to third parties for purposes other than those mentioned in this Policy.

7. Blockchain and Public Data

Users acknowledge that blockchain transactions are public by nature. Any transaction executed through the Protocol will be permanently and immutably recorded on the corresponding blockchain network. This includes wallet addresses, amounts, and timestamps.

This on-chain data is not controlled by the interface and cannot be modified or deleted. Users should be aware that their wallet address and transaction history are publicly visible to anyone with access to a blockchain explorer.

8. International Data Transfers

Personal data may be stored or processed on servers located in various jurisdictions around the world.

When data is transferred internationally, appropriate safeguards are implemented to ensure adequate levels of protection, including standard contractual clauses and security measures consistent with applicable data protection regulations.

9. Security and Confidentiality

Reasonable technical, organizational, and administrative security measures are adopted to protect personal data against unauthorized access, loss, misuse, alteration, or destruction. These include:

  • Data encryption and secure connections (SSL/TLS)
  • Restricted access controls
  • Internal privacy and confidentiality policies
  • Periodic security audits and testing

However, Users acknowledge that no system is completely invulnerable and that data transmission over the Internet carries inherent risks.

10. Data Retention

Personal data will be retained for as long as necessary to fulfill the purposes for which it was collected and in accordance with applicable legal requirements.

Once the retention period has expired, data will be securely deleted or anonymized, unless retention is required by law or for the defense of legal rights.

Note that on-chain blockchain data cannot be deleted due to the immutable nature of distributed ledger technology.

11. User Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data held about you
  • Rectification: Request correction or update of inaccurate or incomplete data
  • Erasure: Request deletion of your personal data where applicable
  • Objection: Object to the processing of your data in certain cases
  • Portability: Receive your data in a structured, commonly used format
  • Withdrawal of consent: Withdraw your authorization for data use at any time

To exercise these rights, please contact us through the support channels provided below.

12. Cookies and Similar Technologies

Cookies and other similar technologies are used to improve User experience, analyze usage patterns, and optimize site functionality.

Users can configure their browser to reject cookies or receive alerts when cookies are sent, although in some cases this may affect the functionality of certain features of the site.

13. Minors

The Services are not directed at individuals under 18 years of age. Personal data from minors is not intentionally collected. If it is discovered that data has been collected from a minor, steps will be taken to delete that information.

14. European Union Users

If you are located in the European Union, you have rights under the General Data Protection Regulation (GDPR). This includes the rights outlined in Section 11 above, as well as the right to lodge a complaint with your local data protection authority.

Data processing for EU users is conducted in accordance with GDPR requirements, including appropriate legal bases and data protection safeguards for international transfers.

15. Modifications to this Policy

This Privacy Policy may be modified at any time. Modifications will take effect upon publication on the interface, unless otherwise indicated.

Users will be informed in case of substantial changes that may affect their rights or how their data is processed.

16. Contact

For inquiries, requests, or claims related to the processing of personal data, Users can contact us through the Telegram support channel or other communication methods provided on the platform.