1. Collected information

We collect the following information:

• Wallet address — captured automatically when MetaWallet connects. Used as your account identifier.
• Profile information (optional) — display name, avatar, bio, external links. Entered by the user.
• Trade history — buy/sell and governance vote records via our service (chain + service DB).
• Access logs — IP, User-Agent, timestamps (kept 90 days, for security and abuse prevention).
• Cookies & local storage — language preference, slippage default, watchlist, notification history and other convenience data.

2. Information we do NOT collect

• Email, phone number, real name or other KYC data (this is a non-KYC service)
• Private keys or seed phrases (MetaWallet keeps these locally; we never have access)
• Residence, payment information or financial accounts

3. Purposes of use

• Providing the service, account identification, processing trades
• Community features such as governance voting, holder distribution, creator profiles
• Detecting and blocking abnormal trades or abuse
• Complying with legal obligations

4. Retention period

Wallet addresses and profiles are retained until the user requests deletion. On-chain trade records cannot be removed due to the nature of distributed ledgers. Access logs are automatically purged after 90 days.

5. Third-party sharing

We do not share personal information with third parties without user consent, except for lawful requests by authorities or when the user has given explicit consent.

6. Cookies & local storage

Browser storage used by this service:

• thedex-metawallet — wallet session persistence
• thedex-prefs — trade defaults like slippage, sound, NSFW
• thedex-notify-history — notification history
• thedex-pair-bookmarks — pair bookmarks
• thedex-watchlist-guest — guest watchlist tokens
• thedex-profile-welcomed — prevents duplicate welcome toasts

All are first-party cookies. We do not use third-party advertising or tracking cookies. You may clear them at any time from your browser settings.

7. User rights

• View/edit profile (`/settings/profile`)
• Request account deletion (contact the team directly)
• Mute notification categories (`/settings`)

8. Security

All communications are encrypted via HTTPS. Database access is minimized, and administrator actions are logged for audit.

9. Contact

For privacy inquiries, please reach out through the operations channel listed in announcements. Major policy changes will be announced via a banner on the site.