← Back to Home

Privacy Policy

Last Updated: January 11, 2025

1. Introduction

Yield Sniper ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our multi-tenant institutional infrastructure platform and services (collectively, the "Service").

By using the Service, you consent to the data practices described in this Privacy Policy.

YOUR PRIVACY MATTERS: We NEVER sell your personal information to anyone. We NEVER share your data with third parties for marketing purposes. We implement enterprise-grade security with multi-tenant data isolation, role-based access control (RBAC), and complete audit trail logging. All data is encrypted at rest and in transit.

2. Information We Collect

2.1 Information You Provide

We collect ONLY the minimum information needed to provide our institutional infrastructure service. We will NEVER ask for sensitive information like social security numbers, bank account details, or wallet private keys. The information you voluntarily provide when you:

  • Join Waiting List: Email address, organization name (optional), institutional email domain
  • Create an Account: Name, email address, organization name, role within organization
  • Multi-Tenant Organization Setup (Asset Managers & Enterprise): Organization details, tenant configuration, user roles (OWNER, EDITOR, VIEWER), fund structure and client segregation data, white-label branding preferences (logo, colors, custom domains)
  • Subscribe (when available): Payment information, billing details, organization tax ID (securely processed by Stripe - we never see your card details)
  • Contact Sales: Email address, name, organization name, AUM information (for qualification), infrastructure requirements
  • Platform Usage (Asset Managers & Enterprise): Fund creation data, position tracking information, compliance preferences, audit log metadata (who did what and when), LP access permissions
  • Update Preferences: Notification settings, alert thresholds, reporting frequency, delivery channels (Email, Telegram, Slack, API webhook)

2.2 Automatically Collected Information

When you use the Service, we automatically collect:

  • Usage Data: Pages visited, features used, time spent, clicks
  • Device Information: Browser type, device type, operating system
  • IP Address: For security and analytics purposes
  • Cookies: To maintain sessions and preferences

2.3 Blockchain Data

If you connect a wallet (e.g., MetaMask), we collect:

  • Wallet address (public blockchain data)
  • Transaction signatures for authentication

Note: We never have access to your private keys or can execute transactions on your behalf.

3. How We Use Your Information

We use the information we collect to:

  • Provide the Service: Process subscriptions, send reports, manage accounts
  • Communicate: Send notifications, updates, and support messages
  • Improve: Analyze usage patterns to enhance features
  • Security: Detect fraud, prevent abuse, ensure platform security
  • Compliance: Meet legal and regulatory obligations
  • Marketing: Send promotional emails (with your consent)

4. Third-Party Services

We use the following third-party services that may collect your information:

Web3Auth

Purpose: Social and wallet authentication
Data: Email, OAuth tokens, wallet signatures
Privacy Policy: web3auth.io/privacy-policy

MongoDB Atlas

Purpose: Multi-tenant database infrastructure with encryption at rest
Data: All application data including user accounts, tenant configurations, fund data, positions, audit logs
Privacy Policy: mongodb.com/legal/privacy-policy

Protocol Data Engine

Purpose: DeFi protocol aggregation and risk scoring (18,000+ pools)
Data: No personal data collected - only protocol metadata and on-chain public data
Privacy Policy: Internal infrastructure - no third-party data sharing

Stripe

Purpose: Payment processing
Data: Payment information, billing details, organization tax ID
Privacy Policy: stripe.com/privacy

MailerSend

Purpose: Email delivery (reports and notifications)
Data: Email address, name, delivery metrics
Privacy Policy: mailersend.com/legal/privacy-policy

Mailerlite

Purpose: Waiting list email management
Data: Email address, organization name, subscription preferences
Privacy Policy: mailerlite.com/legal/privacy-policy

Google Analytics

Purpose: Usage analytics and conversion tracking
Data: Browsing behavior, device info, anonymized IP
Privacy Policy: policies.google.com/privacy

Telegram

Purpose: Alert delivery (optional)
Data: Telegram username, chat ID
Privacy Policy: telegram.org/privacy

Slack

Purpose: Enterprise alert delivery (optional - Enterprise tier only)
Data: Workspace ID, webhook URLs, channel preferences
Privacy Policy: slack.com/privacy-policy

5. How We Share Your Information

YOUR DATA IS PROTECTED: We do NOT sell your personal information. NEVER. We do NOT share your data with advertisers or data brokers. NEVER. We ONLY share your information in the following LIMITED circumstances:

  • Essential Service Providers: Only the third parties listed above that are REQUIRED to operate the Service (authentication, email delivery, payment processing). These providers are contractually bound to protect your data.
  • Legal Requirements: When required by law, court order, or government request (we will notify you if legally permitted)
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (your rights under this Privacy Policy would continue)
  • Protection: To protect rights, property, or safety of Yield Sniper or others (e.g., to prevent fraud)

WE NEVER: Sell your data to anyone. Share your email with marketing companies. Provide your information to advertisers. Use your data for purposes you didn't agree to.

6. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session and keep you logged in
  • Remember your preferences
  • Analyze usage patterns and improve the Service
  • Track conversions and marketing effectiveness

Types of cookies we use:

  • Essential: Required for authentication and core functionality
  • Analytics: Google Analytics for usage statistics
  • Preferences: Store your settings and preferences

You can control cookies through your browser settings, but disabling essential cookies may affect functionality.

7. Data Security

We implement enterprise-grade security measures to protect your information:

  • Encrypted data transmission (HTTPS/SSL/TLS 1.3)
  • Encryption at rest for all database data (MongoDB Atlas AES-256)
  • Multi-tenant data isolation - complete separation of organization data with tenant-scoped queries
  • Role-Based Access Control (RBAC) - Three roles: OWNER (full admin), EDITOR (manage funds/positions), VIEWER (read-only for LPs)
  • Complete audit trail logging - Every CREATE/UPDATE/DELETE action logged with timestamp, user, and IP address
  • Secure session management with iron-session (encrypted cookies)
  • Payment data handled by PCI DSS Level 1 compliant Stripe (we never store card details)
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance readiness (documentation available for Enterprise tier)
  • DDoS protection and rate limiting
  • API authentication with secure tokens and webhook signing
  • Principle of least privilege - users only access data within their tenant and role permissions

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your information. We continuously monitor and improve our security posture.

8. Data Retention

We retain your information for as long as:

  • Your account is active
  • Needed to provide the Service
  • Required for legal or regulatory compliance
  • Necessary for legitimate business purposes

When you delete your account, we will delete or anonymize your personal information within 30 days, except where required to retain for legal purposes.

9. Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate or incomplete information
  • Deletion: Request deletion of your account and data
  • Opt-Out: Unsubscribe from marketing emails
  • Data Portability: Receive your data in a portable format
  • Restrict Processing: Limit how we use your data

To exercise these rights, contact us at support@yieldsniper.finance

10. GDPR Compliance (EU Users)

If you are located in the European Union, you have additional rights under GDPR:

  • Right to be informed about data collection
  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

Legal Basis for Processing:

  • Performance of contract (providing the Service)
  • Consent (marketing communications)
  • Legitimate interests (analytics, security)
  • Legal obligations (compliance)

11. CCPA Rights (California Users)

If you are a California resident, you have the right to:

  • Know what personal information we collect and how we use it
  • Request deletion of your personal information
  • Opt-out of the sale of personal information (we do not sell)
  • Non-discrimination for exercising your rights

To exercise these rights, contact us at support@yieldsniper.finance

12. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will delete it.

13. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs)
  • Data Processing Agreements with service providers
  • Compliance with applicable data protection laws

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a notice on the Service. The "Last Updated" date at the top of this page indicates when the policy was last revised.

15. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Yield Sniper - Privacy

General Support & Privacy: support@yieldsniper.finance

Website: yieldsniper.finance

Privacy Promise - Your Rights Summary

  • We NEVER sell your personal information to anyone
  • We NEVER share your data with advertisers or marketers
  • We implement enterprise-grade security: multi-tenant data isolation, RBAC, complete audit trails
  • We NEVER ask for sensitive info (SSN, bank details, private keys)
  • We use industry-leading security (TLS 1.3, AES-256 encryption, SOC 2 compliance readiness)
  • Multi-tenant organizations have complete data segregation - your data is isolated from other tenants
  • Role-Based Access Control ensures users only see data within their permissions (OWNER/EDITOR/VIEWER)
  • You can access, update, or delete your data anytime
  • We comply with GDPR, CCPA, and international privacy laws
  • You can unsubscribe from emails with one click, anytime
  • Waiting list members receive only what they signed up for - no spam
  • Enterprise tier includes dedicated security documentation and SOC 2 compliance artifacts
Yield Sniper - Your Bridge from Traditional Finance to DeFi Yields