Privacy Policy

ChainBranch (“we”, “our”, or “us”) operates a decentralised social platform built on the Sui blockchain. This Privacy Policy explains what information we collect, how we use it, and the choices you have.

By using ChainBranch you agree to the practices described in this policy. If you do not agree, please discontinue use of the platform.

2.1 On-chain data

All posts, channel memberships, reactions, and other social activity you perform on ChainBranch are submitted as transactions to the Sui blockchain. This data is permanently public, pseudonymous, and outside our control. Your wallet address is permanently associated with your on-chain activity.

2.2 Account information

If you sign in with Google via zkLogin, we receive a one-time OAuth token from Google to derive a zero-knowledge proof. We do not store your Google email address or any Google profile data on our servers. Your Google identity is never linked to your wallet address by us.

2.3 Usage data

Our servers automatically record standard web server logs: IP address, browser user agent, pages visited, and timestamps. These logs are retained for up to 30 days for security and debugging purposes.

2.4 Local storage

Your encrypted wallet key backup (if you use our key-backup feature) is stored only in your browser's local storage. We do not have access to your private keys.

• To provide and operate the ChainBranch platform.
• To detect and prevent spam, abuse, and security incidents.
• To diagnose technical problems and improve platform reliability.
• To comply with applicable legal obligations.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

Because ChainBranch is built on a public blockchain, any data you publish on-chain (posts, usernames, reactions, etc.) is permanently public and cannot be deleted by us. You should not post sensitive personal information on-chain.

ChainBranch integrates with the following third-party services:

• Sui Network — public blockchain infrastructure.
• Walrus — decentralised blob storage for media.
• Google OAuth — optional sign-in via zkLogin.
• Cloudflare — CDN, DDoS protection, and tunnelling.
• Pinata / IPFS — decentralised file storage.

Each third-party service has its own privacy policy. We encourage you to review them.

Server logs are retained for up to 30 days. We do not maintain databases of user profiles beyond what is available on-chain. If you delete your local wallet backup, no copy exists with us.

We use industry-standard security practices including TLS encryption for data in transit, access controls, and regular security reviews. However, no system is completely secure. You are responsible for keeping your wallet private keys safe.

ChainBranch is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

Depending on your jurisdiction you may have rights to access, correct, or delete personal data we hold about you. To exercise these rights, contact us at the address below. Note that on-chain data cannot be deleted due to the nature of blockchain technology.

We may update this policy from time to time. We will post the new policy on this page with an updated effective date. Continued use of the platform after changes constitutes acceptance.

For privacy-related questions please open an issue on our public GitHub repository or contact the team via the ChainBranch platform.