xrphasnfts

Privacy Policy

Last updated: May 2025

1. Introduction

xrphasnfts.com ("the Platform", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your information.

2. What We Collect

We collect and store the following data:

  • Wallet address: Your XRP Ledger wallet address, which is used as your account identifier. This is public information on the XRPL by nature.
  • Display preferences: Username, vanity URL, display name, bio, banner URL, theme selection, and NFT wall configuration.
  • Subscription status: Whether you have an active Pro subscription, the plan type, and expiration date.
  • Age verification data: Birth year and birth month only. We deliberately do not store your exact date of birth to minimize personal data.
  • Content preferences: Whether you have enabled adult content viewing, and whether your profile is marked as 18+.
  • Terms acceptance: Whether and when you accepted the Terms of Service.
  • Payment records: XRP transaction hashes and amounts for subscription payments. These are also public on the XRPL.
  • NFT data: Cached counts and collection data from your on-chain holdings. This is derived from publicly available XRPL data.

3. What We Don't Collect

We do not collect, require, or store:

  • Email addresses (unless you voluntarily provide one)
  • Real names or legal identities
  • Physical addresses or geographic location data
  • Phone numbers
  • Private keys, seed phrases, or wallet passwords
  • Exact dates of birth (only year and month)
  • IP addresses (beyond standard server logs, which are not tied to accounts)

4. How Data Is Stored

Your data is stored in a Supabase database (built on PostgreSQL), which provides encryption at rest and in transit. Our application is hosted on Vercel with automatic HTTPS encryption. We use Row Level Security (RLS) policies to control data access at the database level.

5. Third-Party Services

The Platform interacts with the following third-party services:

  • XRP Ledger (XRPL): A decentralized public blockchain. Your wallet address and transaction history are inherently public on the XRPL.
  • Xaman (formerly XUMM): Wallet connection and transaction signing. Subject to Xaman's own privacy policy.
  • Vercel: Application hosting and serverless functions.
  • Supabase: Database hosting and authentication infrastructure.
  • Cloudflare: CDN and DDoS protection (if enabled).

We do not sell, rent, or share your data with advertisers or data brokers.

6. Cookies & Tracking

We use minimal cookies and local storage for functional purposes only:

  • localStorage: Stores your connected wallet address and last-used wallet provider for session persistence. This data never leaves your browser.
  • No analytics trackers: We do not use Google Analytics, Facebook Pixel, or any third-party tracking scripts.
  • No advertising cookies: We do not serve ads or use ad-related tracking.

7. Your Rights

You have the right to:

  • Access your data: Your profile data is visible on your settings page. On-chain data is publicly viewable on the XRPL.
  • Request deletion: You can request that we delete your account data (display preferences, subscription records, age verification data) from our database. Note that on-chain data (transactions, NFT holdings) cannot be deleted from the XRPL.
  • Disconnect at any time: You can stop using the Platform and clear your local session data by clearing your browser's localStorage.

To request data deletion or export, please contact us through the means provided on the Platform.

8. Data Retention

We retain your account data for as long as your account is active or as needed to provide the Platform's services. If you request account deletion, we will remove your data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., payment records for accounting).

9. Children's Privacy

The Platform's general features are accessible to users of all ages. However, age-restricted content is gated behind age verification. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this page periodically.

11. Contact

If you have questions or concerns about this Privacy Policy or your data, please reach out via the contact information listed on the Platform.

Terms of Service·Back to Home