โ† Back to Home

Privacy Policy

๐Ÿ”’ Our Core Commitment

We do not log, store, or sell your data. Period.

Proof of Balance is a stateless, privacy-first service designed to verify blockchain balances without compromising your privacy.

What We Don't Do

  • โœ—
    We don't store wallet addresses โ€” Your queries are processed in real-time and never saved to a database.
  • โœ—
    We don't track users โ€” No cookies, no analytics trackers, no user profiles.
  • โœ—
    We don't sell data โ€” We have no business model based on data monetization.
  • โœ—
    We don't require registration โ€” No accounts, no emails, no personal information collected.

How It Works

When you query a wallet balance, here's what happens:

  1. You enter a wallet address and select a blockchain
  2. Our server queries the respective blockchain API (Covalent, Helius, Blockfrost, etc.)
  3. We return the balance data directly to your browser
  4. That's it. No logging, no storage, no tracking.

What Technical Data We Process

For operational security and error monitoring, we maintain minimal technical logs:

  • Application errors and exceptions โ€” used for debugging and service reliability
  • Performance metrics โ€” response times and resource usage (aggregated, no URLs)

โœ… We have disabled HTTP request logging and dependency tracking to ensure wallet addresses are never logged.

These logs are retained for a maximum of 30 days and are never shared with third parties or used for any purpose other than security and error diagnostics.

Transparency & Code Review

We are committed to transparency and plan to open source this project in the near future. Once available, you will be able to:

  • Audit our codebase to verify our privacy claims
  • Self-host the application on your own infrastructure
  • Contribute improvements and security enhancements

Until then, this privacy policy serves as our commitment to you.

Third-Party APIs

We query blockchain data from the following providers:

  • Covalent (Ethereum, BNB Chain)
  • Helius (Solana)
  • Blockfrost (Cardano)
  • Mempool.space (Bitcoin)
  • Public RPCs (Sui, XRP Ledger)

These providers may have their own logging policies. We recommend reviewing their respective privacy policies if you have concerns.

Data Retention

Zero retention. We use in-memory caching for API responses (5-minute TTL) to improve performance, but:

  • Cache entries are stored in RAM only (never persisted to disk)
  • Cache is wiped on server restart
  • Wallet addresses are NOT included in cache keys

Your Rights

Since we don't store your data, there's nothing to:

  • Request access to
  • Request deletion of
  • Request correction of

You're in full control. Every query is fresh, stateless, and ephemeral.

Security Measures

  • HTTPS enforced โ€” All communication is encrypted
  • Rate limiting โ€” Prevents abuse and DDoS attacks
  • No authentication โ€” No passwords or credentials to compromise
  • API keys secured โ€” Stored in Azure Key Vault with Managed Identity

Questions?

If you have concerns about privacy or data handling, we take privacy seriously and are continuously improving our data protection measures.

For inquiries, reach out to: dev [at] oresai [dot] io

Once this project is open sourced, you'll also be able to open issues or discussions on GitHub.

Last Updated: 2025-01-19

ยท

Version: 0.4.0

This privacy policy may be updated to reflect changes in our practices. Material changes will be communicated through this page.