Brain VaultBrain Vault

Privacy Policy

Brain Vault Privacy Policy

Learn how Brain Vault collects, uses, and protects your personal information

This Privacy Policy describes how Distributed Machines Inc. ("Brain Vault," "we," "us," or "our") processes personal data for Brain Vault's FraxUSD-focused vault service and related tools (the "Service").

1) Controller & Contact

Distributed Machines Inc.

  • 2300 West Sahara Ave, Suite 800, PMB 214, Las Vegas, NV 89102, USA
  • Single inbox: webmaster@iq.wiki

2) Information We Collect

Account – email, username, preferences, verification status (e.g., age/region checks).

Wallet & On-Chain – connected public addresses; balances, positions, and transactions we read; approvals/allowances you grant; chain/network details; execution telemetry (transaction hash, gas used, slippage settings, failures/reverts). We never request or store private keys or seed phrases.

Strategy & Performance – strategy parameters you select (thresholds, targets), simulated/backtested metrics (assumptions), performance dashboards you view.

Risk & Integrity Signals – oracle/bridge health checks we query, anomaly detection, rate-limit events, sanctions screening of wallet addresses using public lists.

Usage & Device – IP address, device/browser, cookie IDs, session logs, latency/error events, approximate location from IP.

Cookies & Similar Technologies – identifiers and preferences detailed in §7.

Communications & Legal – support, incident reports, dispute/arbitration communications.

3) Purposes & Legal Bases

Provide the Service (contract): show balances/positions, analytics, and strategy results you request; execute user-initiated actions you sign; keep telemetry for troubleshooting.

Safety & Compliance (legal obligation/legitimate interests): detect abuse/manipulation; comply with sanctions/export controls; investigate incidents.

Improvement & Research (legitimate interests/consent where required): evaluate models/strategies; monitor performance; optimize UX and reliability.

Communications (contract/legitimate interests/consent): service updates, support responses.

Marketing (consent/legitimate interests): optional updates; opt-out anytime.

4) Sharing & Disclosure

Service Providers: cloud, blockchain node/infra, analytics, anti-abuse, observability vendors (under contract).

Protocols You Choose: your wallet signs on-chain actions; on-chain data is public by design.

Compliance: regulators or law enforcement when legally required.

Corporate Transactions: merger, acquisition, or asset sale.

We do not sell personal information. If cross-context targeted ads are used, we will provide opt-out and honor GPC.

5) International Transfers

For EEA/UK data, we use SCCs and supplementary measures for transfers to countries without adequacy decisions.

6) Retention

On-chain telemetry & execution logs: up to 24 months (shorter where feasible).

Incident/security logs: up to 24 months (longer if required).

Financial/contractual records: as required by law.

Strategy configurations: retained while your account is active or until you delete.

7) Cookies & Similar Technologies

Strictly necessary – session/auth, CSRF, rate-limit tokens (session/24h).

Functional – preferences such as chain/network, language, and UI state (6–12 months).

Analytics/performance – PostHog, Google Analytics (up to 13 months).

Advertising – not enabled by default; if later enabled, you'll receive controls.

Controls: cookie banner and browser settings; GPC honored where applicable.

8) Your Rights

EEA/UK: access, rectification, erasure, restriction, portability, objection; withdraw consent.

US (CA/VA/CO/CT/UT): know/access, correct, delete, opt-out of sale/sharing/targeted ads, limit sensitive PI use, non-discrimination.

We verify identity and may deny requests where legal exemptions apply.

Appeals: email webmaster@iq.wiki (subject: "Appeal – Privacy Request").

Complaints: you may contact your local supervisory authority.

9) Security & Responsible Disclosure

Encryption in transit/at rest; access controls; least-privilege; monitoring; vulnerability scanning; incident response; secret management for platform credentials (never your wallet keys).

Safe Harbor: good-faith security research with remediation time won't trigger legal action. Report to webmaster@iq.wiki (subject: "Security Report").

10) Children

Brain Vault is for users 18+ (or higher age of majority). We do not knowingly collect data from minors below that threshold.

11) Automated Decision-Making

We may use automated anomaly scoring (e.g., sanctions risk, oracle/bridge health). These systems do not produce legal or similarly significant effects without human review. You may request human review at webmaster@iq.wiki.

12) Changes & Contact

We'll update this Policy as needed and provide reasonable notice for material changes.

Contact: webmaster@iq.wiki