Privacy Policy

Effective date: January 2026

This Privacy Policy explains how VSmarket ("VSmarket", "we", "us") handles information in connection with the VSmarket website, application interfaces, APIs, and smart contracts (the "Service"). This document is for informational purposes only and is not legal advice. It may be updated from time to time and should be read together with our Terms of Use and any other policies referenced therein.

1) Our model: wallet-first, no-KYC by default

VSmarket is a neutral, non-custodial DeFi interface. By default, we do not require Know Your Customer (KYC) checks and do not request government identity documents. Your on-chain wallet address is your identity for the purposes of the Service. Interactions happen directly between your wallet and public smart contracts. We do not take custody of user funds.

Important: most activity on the Service is recorded on public blockchains and may be mirrored by third parties (e.g., explorers, RPC providers, indexers). VSmarket cannot edit, erase, or guarantee the confidentiality of public blockchain data.

2) Optional account (email)

You may optionally attach an email address to your profile to receive communications you request (e.g., dispute notifications, challenge updates, security notices, and product announcements). Supplying an email is optional and is not required to use the core on-chain features.

If you provide an email, we store it along with minimal metadata (e.g., subscription preferences, timestamps, and delivery events such as bounces/unsubscribes) to operate the requested communications and to protect the Service from abuse (e.g., rate limiting, fraud detection).

3) Information we do (and do not) collect

  • Wallet & on-chain data: public wallet addresses, transaction hashes, challenge/contest identifiers, and references to proofs and metadata (e.g., IPFS content IDs/URIs, metadata URIs, and on-chain hashes/commitments) that you or other users publish. This information is by nature public and may be indexed, cached, and replicated by third parties. We do not control its availability or deletion once published on-chain or to decentralized storage networks. You are responsible for what you publish. If a token transfer fails on-chain, the contract may record a claimable balance for an address; this state is public on-chain and does not require us to custody funds.
  • Device / usage telemetry (minimal): we may process limited technical data to operate, secure, and improve the Service (e.g., request counts, timestamps, error logs, approximate location by IP, and user-agent). Hosting, CDN, and security providers may temporarily process IP addresses and related metadata as part of delivering the Service. Where we store such data, retention is limited and primarily for security, abuse prevention, and reliability.
  • Optional email data: if you opt in, we store your email, preferences, and related communication events (e.g., bounces, unsubscribes). We do not sell email data.
  • No sensitive categories: we do not seek to collect special-category data (e.g., health, political opinions). Do not submit such information through the Service.

4) Cookies and local storage

We use strictly necessary cookies and local storage to enable core functionality (e.g., selected network, UI preferences) and to keep an authenticated session where applicable (for example, an admin session established via a signed wallet message). We may also use privacy-respecting analytics (aggregate metrics only) to understand general usage and improve performance.

You can configure your browser to limit cookies or clear local storage. Some features may become unavailable as a result.

5) How we use information

  • Operate, maintain, secure, and improve the Service (including debugging and performance monitoring).
  • Prevent, investigate, and respond to fraud, abuse, security incidents, or prohibited activity.
  • Provide user communications you request or opt into (e.g., disputes, challenge updates, security notices).
  • Comply with applicable law and respond to lawful requests from authorities.
  • Enforce our Terms of Use and protect the rights, safety, and integrity of VSmarket, users, and third parties.

6) Third‑party services and disclosures

VSmarket relies on decentralized and third‑party infrastructure, which may process your data under their own policies:

  • Wallet providers (e.g., injected wallets) — your interactions are governed by each wallet’s terms.
  • RPC providers (e.g., node gateways) — may log requests and IP addresses to operate the network.
  • Explorers / indexers: third-party services may index, display, and store on-chain activity under their own policies.
  • IPFS / storage (e.g., gateways) — proofs and media you publish may be cached, replicated, and become publicly available. Removal is not guaranteed.
  • Discord (optional coordination chats) — if you use Discord challenge chats, Discord processes messages and metadata under its own policies. Challenge chat threads are intended to be private between participants, but may be accessible to VSmarket moderators for dispute review and anti-abuse enforcement.
  • Analytics / email vendors — if used, we select privacy‑respecting providers and share only what’s necessary to provide the requested features.

Dispute context: if you choose to share off-chain context (for example Discord messages, screenshots, or other logs) in a dispute, that information may be reviewed by moderators/admins according to the Arbitration Rules and retained only as needed for dispute handling, abuse prevention, and compliance.

We do not sell personal information. We may disclose limited information we control if required by applicable law, regulation, court order, or to defend our rights, users, or the integrity of the Service.

VSmarket is not affiliated with, endorsed by, sponsored by, or partnered with any third-party platforms, games, publishers, or services that users reference in challenges. Third-party names and marks may be the property of their respective owners.

7) Data minimization, retention, and security

We practice data minimization: we only collect what we need for the purposes described above. Retention is limited to the minimum necessary (for example, security logs retained briefly; email records retained while you remain subscribed). We apply reasonable administrative, technical, and organizational measures to safeguard data we control. No method of transmission or storage is perfectly secure; risk remains when using any online service. We cannot guarantee that unauthorized third parties will never be able to defeat our security measures or misuse data.

8) Your choices and rights

Because VSmarket is wallet-first and largely non-custodial, much of the information relevant to your activity is public on-chain and not controlled by us (and thus cannot be altered or deleted by us). For data we control (for example, an optional email record or an off-chain profile preference), you may request access, correction, or deletion, subject to verification and applicable law.

  • You can unsubscribe or request deletion of your email record; we will action reasonable requests.
  • You can request access to a copy of data we control about you (if any), subject to verification.
  • You can object to or restrict certain uses where applicable by law; we will comply where required.

To exercise these choices, contact us via the channels listed below. We may ask you to prove control of the wallet address associated with the request (e.g., signature) or verify the email you supplied.

9) Children

The Service is intended for adults. Do not use VSmarket if you are under the age of majority in your jurisdiction. We do not knowingly collect information from children.

10) International data transfers

VSmarket may use infrastructure and service providers in various countries. By using the Service, you understand that information may be processed outside your country of residence. Where required, we take steps to implement appropriate safeguards for international transfers of data we control.

11) Legal basis and controller information

Where relevant privacy frameworks apply, legal bases may include performance of a contract (providing the Service you request), legitimate interests (security, preventing abuse, improving the Service), and consent (optional communications). VSmarket is the controller for data it directly collects and controls (for example, optional email records). For public blockchain and decentralized storage data, VSmarket does not control the networks and generally does not act as the controller.

12) Law enforcement and compliance

We may preserve and disclose information we control if we believe it is reasonably necessary to comply with applicable law, regulation, legal process, or governmental request; to protect the rights, property, or safety of VSmarket, our users, or the public; or to enforce our Terms of Use. We aim to narrowly tailor any disclosure and to notify affected users where lawful and feasible.

13) Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be indicated by updating the “Effective date” above. Your continued use of the Service after a change constitutes acceptance of the updated Policy.

14) Contact

For privacy inquiries, data access, or deletion requests related to information we control, please reach out via our official support channels listed on the website. We may request a signed message from your wallet or an email verification to confirm ownership before processing a request.