CoinFello Privacy Policy

Effective Date: February 24, 2026

HyperPlay Labs, LLC ("we," "us," or "our") operates CoinFello, an AI agent designed to assist users in connecting their self-hosted wallet to various smart contracts. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use CoinFello (the "Service"). Our primary place of business is located at 600 W 6th Street - Fourth Floor #1079, Fort Worth, TX 76102.

CoinFello operates as a non-custodial software provider and does not control or take custody of user cryptocurrency assets.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

1. Information We Collect

We collect information that you provide directly to us, as well as information generated through your use of the Service. This may include personal information, which is data that can identify you as an individual, and non-personal information.

We process personal information under the following legal bases where applicable: (i) performance of a contract; (ii) compliance with legal obligations; (iii) our legitimate interests in operating and improving the Service; and (iv) your consent where required.

a. Information You Provide

Account and Profile Information: When you create an account, we may collect your email address, username, or other identifiers for authentication and session management.
Wallet and Blockchain Data: Public wallet addresses, public transaction details, token amounts, transaction parameters, and related crypto activities you authorize through the Service (which may be permanently recorded on public blockchain networks outside of our control).
Communication Data: User messages and conversation context shared with the AI agent, search queries, and preferences (e.g., language or country).
Contact Information: Email addresses for transaction emails, push notifications, and opt-in marketing emails.

b. Automatically Collected Information

Device and Technical Information: Browser type, device identifiers, and push subscription endpoints. While internet architecture may expose IP addresses to our services, we do not intentionally log or retain full IP addresses beyond what is technically necessary for security and sanctions compliance.
Cookies and Local Storage: We use session cookies for authentication and local storage for accessing keys to on-chain accounts.

c. Optionally Collected Data

Usage Data: Information about your interactions with the Service, such as your click interactions with our user interface, anonymized page views or events are used by our team to optimize your user experience.
Chat History: CoinFello implements or is working to implement encryption of all chat interactions with your CoinFello agent where technically feasible. However, we will grant users the ability to share chat interactions with the CoinFello team for the purposes of optimizing the service.

d. Geolocation Data

We use IP-based country detection via Vercel to ensure compliance with international sanctions. This may block access from restricted countries, including Cuba, Iran, North Korea, and Syria. We do not collect precise location data beyond country-level inference.

e. Data from Third Parties

We may receive information from third-party services you connect to CoinFello, such as wallet providers or blockchain explorers.

We do not collect sensitive personal information such as financial account numbers (beyond crypto-specific data you authorize), social security numbers, or health data unless directly related to your crypto wallet management. You should not provide sensitive personal information through the Service.

2. How We Use Your Information

We use the collected information for the following purposes:

Providing and Improving the Service: To process your crypto wallet management requests, execute transactions, provide AI-driven responses, and enhance functionality (e.g., using user messages for conversation context).
Authentication and Security: To verify your identity via OTP, manage sessions, and ensure secure wallet connections.
Compliance and Risk Management: To detect and prevent fraud, and comply with legal obligations (e.g., sanctions screening via geolocation).
Communication: To send push notifications or emails related to your account or transactions.
Analytics and Research: To analyze usage patterns anonymously (no personally identifiable information, or PII, is shared with analytics providers except as required for fraud prevention, security, or legal compliance) to improve the Service.
Support and Maintenance: To troubleshoot issues, recover pending transactions, and respond to your inquiries.

3. Sharing of Your Information

We do not sell your personal information. However, we may share your information with third-party vendors and service providers to operate the Service.

Our service providers are contractually obligated to use your information only to provide services to us and in accordance with applicable data protection laws.

We may also share information as required by law, such as in response to subpoenas, court orders, or to protect our rights, property, or safety, or that of our users or others.

b. Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity.

4. Data Storage and Security

a. Internal Database

In certain circumstances, we may store user accounts, sessions, wallet addresses, chat history, and push notifications in a secure database. Data is encrypted at rest and in transit.

b. Security Measures

We implement reasonable administrative, technical, and physical safeguards to protect your information from unauthorized access, loss, misuse, or alteration. This includes encryption for sensitive data, access controls, and regular security audits. However, no method of transmission over the internet or electronic storage is 100% secure, so we cannot guarantee absolute security.

In the event of a data breach affecting personal information, we will provide notifications as required by applicable law.

c. Data Retention

We retain your information only as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. For example, chat history may be retained for service improvement, while transaction data is kept for compliance. You can request deletion of your data as described below. We may retain certain information as necessary to comply with legal obligations, resolve disputes, or enforce our agreements.

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, and correct personal information. The Service does not respond to "Do Not Track" browser signals.

5. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

Access: Request a copy of the information we hold about you.
Correction: Update or correct inaccuracies in your data.
Deletion: Request deletion of your data (subject to legal retention requirements).
Opt-Out: Opt out of certain data sharing or processing (e.g., push notifications).
Portability: Request transfer of your data to another service.

To exercise these rights, contact us at the information provided below. We will respond to verifiable requests within a reasonable timeframe. We may require identity verification before fulfilling certain requests.

You can manage cookies and local storage through your browser settings. Note that disabling them may limit Service functionality.

6. Children's Privacy

The Service is not intended for children under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected such information, we will take steps to delete it.

7. International Data Transfers

Your information may be processed and stored in the United States or other countries where our vendors operate. By using the Service, you consent to the transfer of your data to these locations subject to appropriate safeguards as required by applicable law, which may have different data protection laws than your country.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by posting the updated policy on our website or through the Service, with the "Effective Date" updated accordingly. Your continued use of the Service after changes constitutes acceptance of the revised policy.

9. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

HyperPlay Labs, LLC 600 W 6th Street - Fourth Floor #1079 Fort Worth, TX 76102

Email: privacy@coinfello.com