Data Privacy

We are committed to the responsible handling of data and full compliance with privacy regulations such as GDPR. This page outlines our policies regarding the customer data we process to provide our services.

What Customer Data We Handle

To operate our services, we process three main categories of customer-related data:

• Validator Node Identity Keys: For customers running validators on our infrastructure.

• RPC Service Log Data: Logs generated by user interaction with our RPC endpoints.

• Customer Account & Billing Information: Information required for account management and invoicing.

How We Protect Your Data

We employ strict measures to protect the data you entrust to us.

• Validator Keys: Private keys are a critical asset. They are never stored or transmitted unencrypted and only ever exist in a decrypted state inside the relevant processes memory while in active use.

• Billing Information: Sensitive payment details, such as credit card numbers, are never stored on our systems. All billing is handled by separate, dedicated, and compliant third-party payment processors.

RPC Log Data and Privacy Levels

We provide different levels of data privacy to suit our customers' needs.

Shared Services

On our shared services, all data collection is for the sole purpose of abuse prevention and operational stability. We do not identify or de-anonymize individual end-users, and our standard log retention period is four weeks.

Dedicated Services

For our dedicated services, we offer customers direct control over their logging policies to meet specific legal or privacy requirements. You can choose from the following levels:

• Max Privacy: No request parameters or payloads are logged. This offers the highest level of privacy but may limit our ability to detect certain types of abuse. This is the required policy for any shared infrastructure components.

• Enhanced Privacy (Default): We may log method parameters but cannot link the signer of a transaction to the originating IP address. This provides a balance of operational insight and user privacy.

• GDPR Privacy: We may log all parameters for technical support, legal, or compliance reasons. All data is handled in a fully GDPR-compliant manner.

For any questions regarding our data privacy policies, please contact us at [email protected].