Privacy Policy

Effective date: January 2026

Data minimization No sale of personal data Security-first

This Privacy Policy describes how NeuroPoS (“NeuroPoS”, “we”, “us”) collects, uses, and shares information when you use our website, pages, and related services (the “Service”).

NeuroPoS is built for evidence-first verification. We aim to minimize personal data collection.

1. Scope

This policy applies to our website and public pages, and to any APIs or dashboards we operate. It does not apply to third-party websites, RPC providers, blockchain networks, or explorers that you may access through links.

2. Information we collect

A) Information you provide
  • Contact details (e.g., email) and the content of your message when you contact us (e.g., enterprise pilot inquiries).
  • Business information you choose to share (e.g., company name, requirements, scope requests).
B) Information collected automatically
  • Basic server logs (e.g., IP address, user agent, request path, timestamp) for security, rate limiting, and reliability.
  • Limited technical data necessary to operate the Service (e.g., error diagnostics).
C) Blockchain / network data

Our verification pages display network-derived data (e.g., validator identifiers, ranges, block heights, proofs). This information typically originates from public networks and is not “personal data” we create, but it may be linked to individuals in some contexts depending on external attribution.

3. How we use information

  • To operate and maintain the Service (including debugging, reliability, and performance).
  • To protect the Service (abuse prevention, rate limiting, fraud/security monitoring).
  • To respond to inquiries and provide requested support (e.g., enterprise pilot requests).
  • To improve product quality and UX (using aggregated, non-identifying insights where possible).

Data processing summary

A compact overview of what we process, why, and how long we keep it. This section is informational and does not replace the full policy text.

Data Purpose Retention Legal basis Shared with
Server logs (IP, user agent, request path, timestamp) Security, abuse prevention, rate limiting, reliability Limited period; may be extended for investigations Legitimate interests (security & operations) Infrastructure providers (as processors), legal authorities if required
Contact messages (email + message content) Respond to inquiries; provide support; enterprise onboarding As long as needed to address the request; then archived/deleted Contract steps / legitimate interests Email providers; internal support staff
Preference data (theme, language) Remember UI preferences Stored in cookies/local storage until cleared Legitimate interests (functional) Not shared
Network-derived data displayed in UI (validator IDs, heights, proofs) Evidence-first verification and presentation Depends on dataset coverage; not “personal data” created by us Legitimate interests; public information Public blockchains / RPC sources (as data origins)
Notes: Retention can vary based on security incidents, legal requirements, and operational needs. We do not sell personal data.

4. Cookies and local storage

We may use cookies or local storage to remember user preferences such as theme and language. These are functional preferences and not used to sell personal data.

You can clear cookies via your browser settings. Some preferences may reset afterward.

5. Sharing of information

We do not sell your personal data. We may share information only in limited situations:

  • Service providers (e.g., infrastructure hosting, email delivery) who process data on our behalf under appropriate safeguards.
  • Legal compliance (to respond to lawful requests, enforce agreements, or protect rights and safety).
  • Business transfers (if we undergo a merger, acquisition, or asset sale, subject to applicable law).

6. Data retention

We retain personal data only as long as necessary for the purposes described in this policy, including legal, accounting, or security requirements.

Server logs are generally retained for a limited period and may be retained longer where required for security investigations or compliance.

7. Security

We use reasonable technical and organizational measures to protect information, including security headers, access controls, and monitoring. No method of transmission or storage is completely secure.

8. International users

If you access the Service from outside the country where our servers or operations are located, your information may be processed in different jurisdictions. We take steps to protect data consistent with this policy and applicable law.

9. Your choices and rights

Depending on your location, you may have rights to access, correct, delete, or object to certain processing of your personal data. You may also withdraw consent where processing is based on consent.

To exercise these rights, contact us at privacy@neuropos.io.

10. Children

The Service is not directed to children, and we do not knowingly collect personal data from children.

11. Changes to this policy

We may update this policy from time to time. The “Effective date” indicates when the latest version applies.

12. Contact

If you have questions about privacy, contact us at:

privacy@neuropos.io

Copied