BlockApps Privacy Policy
Last Updated: February 18, 2026
1. Introduction
BlockApps, Inc. (“BlockApps,” “we,” or “us”), a Delaware corporation, provides a technical software interface (the “Platform”) to help users interact with digital representations of assets managed by STRATO, Inc. (“BVI Entity”).
Non-Custodial Disclosure: Our Platform is strictly non-custodial. We do not have access to, nor do we store, your private keys, seed phrases, or digital assets. You are solely responsible for the security of your own digital wallet and any assets contained therein.
2. Information We Process
We adhere to a privacy-first approach, collecting only the minimum data required to operate the Platform and facilitate third-party services:
- Email Address: We collect your email address to facilitate account communications, provide technical support, and enable integration with third-party payment processors.
- Public Wallet Addresses: We process your public address to display asset balances and transaction history within the Platform interface.
- On-Chain Data: We process cryptographic hashes of your blockchain interactions to ensure the Platform correctly reflects your activity.
- Technical Identifiers: We may collect basic device data (e.g., equipment IDs, IP addresses) and session cookies to ensure network security and prevent fraud.
3. Third-Party Data Sharing and KYC
- Service Providers: We share data with the BVI Entity and third-party service providers (e.g., vaulting partners and payment processors) solely to the extent necessary to provide the services.
- Independent Controllers: Payment processors and the BVI Entity are independent Data Controllers. If you provide legal names or government IDs to these partners, BlockApps does not store or have access to that information.
- No Sale of Data: We do not sell your personal data to third parties for marketing or any other purpose.
4. Blockchain Immutability and Data Rights
The blockchain is an immutable, public ledger. Once data is recorded, it cannot be altered or removed.
- Public Visibility: Information on the blockchain is inherently transparent. BlockApps does not control, and is not responsible for, the public disclosure of your activity on the blockchain.
- Right to Deletion: While we fulfill deletion requests for data in our traditional databases (e.g., your email address), we cannot "wipe" data, wallet addresses, or transaction hashes recorded on the blockchain.
- Retention: Notwithstanding a deletion request, we may retain your email and transaction records for 5-7 years to comply with mandatory anti-money laundering (AML) and financial record-keeping laws.
5. Your Privacy Rights (U.S. Residents)
BlockApps extends the following rights to all U.S. users nationwide:
- Access: Request a copy of your personal data.
- Correction & Deletion: Request that we fix inaccuracies or delete your off-chain data.
- Opt-Out: Direct us not to share your data for targeted advertising. We recognize Global Privacy Control (GPC) signals.
6. Rights for EEA and UK Residents
If you are located in the European Economic Area or the United Kingdom, you have additional rights under the EU GDPR and UK GDPR:
- Lawful Basis: We process data for Contractual Necessity, Legal Obligation (AML compliance), and Legitimate Interests (security and fraud prevention).
- International Transfers: Data is processed in the U.S. under Standard Contractual Clauses (SCCs) or the UK International Data Transfer Agreement (IDTA).
7. Children’s Privacy (COPPA)
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the data as soon as possible.
8. Global Sanctions Screening
We use third-party analytics to screen wallet addresses against international sanctions lists (US OFAC, UK, and EU). This screening is a mandatory safety measure for our financial partners and occurs without BlockApps identifying your real-world identity.
9. Contact
To exercise your rights, contact us at [email protected].