DEXETERA PRIVACY POLICY

Last Updated: January 30, 2026

1. PRIVACY PRINCIPLES & ZERO-TRACKING COMMITMENT

Dexetera is designed and operated on a zero-tracking, zero-surveillance foundation. This Privacy Policy explains our minimal data practices and your rights.

Core Principles

Your trading is your business: We do not monitor, profile, or track your trading activity
No personal identification required: We do not collect names, emails, or ID documents
No cookies, no logs: We do not use tracking technologies or retain connection logs
Blockchain-only data: Only data necessary for blockchain settlement is processed
No selling of data: We never sell, license, or share your data with third parties for profit
No profiling: We do not build user profiles or use data for targeted marketing

2. WHAT DATA WE COLLECT

2.1 Blockchain-Derived Data (Necessary for Trading)

To enable trading on Dexetera, we necessarily access:

Your wallet address: Required to settle trades on the blockchain
Transaction data: Trade amounts, prices, timestamps from your blockchain transactions
Smart contract interactions: Data necessary for executing your orders on-chain

Scope: This data is the minimum required for blockchain settlement and is not retained separately from the blockchain itself.

2.2 What We DO NOT Collect

We explicitly do not collect:

Personal identification information (name, email, phone number, address)
Identity verification documents (government ID, passport, biometric data)
Trading history (for purposes other than immediate settlement)
Browsing behavior (pages visited, time spent, clicks)
Device information (device type, OS, browser type)
Connection data (IP addresses as persistent identifiers; see Section 4.2 for temporary infrastructure logs)
Cookies or persistent identifiers
Behavioral profiles or financial history
Communication records (messages, support tickets beyond what is necessary to respond)

3. DATA PROCESSING & LEGAL BASIS

3.1 Legal Basis

To the extent Dexetera processes any personal data subject to GDPR:

Performance of contract: Blockchain-derived wallet addresses and transaction data are processed to perform the trading contract with you
Compliance with legal obligation: If legally required to disclose data to authorities (e.g., financial crime investigations), we will disclose only what is legally mandated
No consent-based processing: We do not use your data for purposes requiring consent (marketing, profiling, etc.)

3.2 Legitimate Interest (Where Applicable)

Platform security: We may process minimal data to prevent fraud, abuse, or unauthorized access
Legal defense: We retain records necessary to defend against legal claims

4. DATA RETENTION

4.1 Blockchain Data

Immutable: Transaction data recorded on the blockchain is permanent and beyond our control
Non-proprietary: Blockchain data exists independently of our systems

4.2 Server Logs (If Any)

Infrastructure logs: If server logs contain IP addresses or connection data, these are deleted after 24 hours
No long-term retention: We do not retain historical logs for surveillance or profiling

4.3 Support & Communication

Support records: If you contact us for support, we retain your message only to respond and resolve your issue
Retention period: Support records are deleted 90 days after issue resolution, unless required by law

4.4 Legal Holds

If involved in legal proceedings, we may retain data as required by law or court order. Upon resolution, such data is deleted unless legally mandated otherwise.

We do not share, sell, license, or disclose your data to:

Marketing firms, data brokers, or analytics companies
Advertising networks or social media platforms
Financial institutions for profiling or lending decisions
Affiliate programs or partner networks
Business partners for commercial purposes

5.2 Exceptions: Required Disclosures

We may disclose data only when legally required:

Law enforcement requests: If compelled by valid legal process (court order, subpoena, warrant)
Regulatory compliance: If required by FINMA, SEC, or similar authorities investigating financial crime
Preventing harm: If necessary to prevent imminent harm, fraud, or illegal activity

Such disclosures are made only to the extent legally mandated, with notice to you if legally permissible.

5.3 Blockchain Data

Blockchain data is public by nature. Your wallet address and transactions are visible to all blockchain users and cannot be made private by us.

If you are subject to GDPR, Swiss DPA, or similar privacy laws, you have the following rights:

6.1 Right to Access

You may request a list of any personal data we hold about you. We will respond within 30 days.

Limitation: We hold minimal data. Blockchain data cannot be controlled by us and remains visible on the blockchain.

6.2 Right to Correction

You may request correction of inaccurate data we hold about you.

Limitation: We do not retain trading history or personal records to correct.

6.3 Right to Erasure ("Right to be Forgotten")

You may request deletion of your personal data, subject to limitations.

Limitations:

Blockchain data is immutable and cannot be deleted
Data required for legal compliance (tax, AML) cannot be deleted if required by law
Anonymized data may be retained

6.4 Right to Restrict Processing

You may request that we restrict our processing of your data.

Practical scope: Given our minimal data practices, this right has limited applicability.

6.5 Right to Data Portability

You may request your data in a portable format (e.g., CSV).

Scope: We will provide blockchain-derived data if we maintain it in structured form.

6.6 Right to Object

You may object to specific processing activities (e.g., legal defense processing).

Contact us to exercise this right.

6.7 Right to Lodge a Complaint

You have the right to lodge a complaint with your local data protection authority (e.g., the Swiss Data Protection and Information Commissioner, EU Data Protection Authorities).

7. SECURITY MEASURES

7.1 Technical Security

We implement reasonable technical measures to protect data:

HTTPS encryption for all communications
Secure API access controls
Regular security audits
No plaintext storage of sensitive data

7.2 Organizational Security

Restricted access to sensitive systems
Incident response procedures

7.3 Assumption of Risk

You acknowledge that:

No security is absolute; breaches are possible despite precautions
You are responsible for securing your private keys
We cannot protect against unauthorized private key access by third parties
Blockchain transactions are irreversible

8. COOKIES & TRACKING TECHNOLOGIES

8.1 No Cookies

Dexetera does not use cookies, including:

Session cookies
Persistent cookies
Tracking cookies
Retargeting pixels or similar technologies

8.2 Third-Party Tracking

We do not permit third parties to place cookies or tracking pixels on our platform.

8.3 Local Storage

We do not use browser local storage for tracking or profiling purposes.

9. ANALYTICS & PERFORMANCE MONITORING

9.1 Limited Analytics

If we use any analytics, it is solely for:

Identifying and fixing technical issues
Measuring platform uptime and performance
Detecting and preventing abuse or attacks

9.2 Anonymization

Any analytics data is aggregated and anonymized; it does not identify you individually.

10. CHILDREN'S PRIVACY

Dexetera is not intended for use by children under 18 years of age. We do not knowingly collect data from children. If we become aware that a child has provided data, we will delete it immediately.

11. INTERNATIONAL DATA TRANSFERS

11.1 Data Location

Blockchain data: Blockchain data is replicated

11.2 Your Responsibility

If you are in the EU/EEA and use Dexetera, you acknowledge that blockchain data will be transferred globally.

12. CALIFORNIA PRIVACY RIGHTS (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

12.1 Right to Know

You may request what personal information we collect about you.

12.2 Right to Delete

You may request deletion of personal information, subject to legal exceptions.

12.3 Right to Opt-Out

You may opt-out of the sale or sharing of your personal information. Given our no-tracking model, this right has minimal practical scope.

12.4 Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights.

13. NEVADA PRIVACY RIGHTS

If you are a Nevada resident, you may request that we not sell your personal information to third parties. We do not sell your data, so this right is automatically respected.

14. DATA BREACH NOTIFICATION

14.1 Notification Obligation

If a data breach occurs that affects your personal data, we will notify you without unreasonable delay, as required by law (within 72 hours under GDPR).

14.2 Content of Notification

Notification will include:

Description of the breach
Types of data affected
Likely consequences
Measures taken to mitigate harm

14.3 Blockchain Breaches

Breaches of blockchain data (e.g., smart contract exploits) are disclosed through public channels and community notifications, as blockchain data is inherently transparent.

15. THIRD-PARTY LINKS & SERVICES

Dexetera may link to third-party services (wallets, DEXs, blockchain explorers). We are not responsible for their privacy practices. Review their privacy policies separately.

16. MARKETING & COMMUNICATIONS

16.1 No Unsolicited Marketing

We do not send unsolicited marketing emails unless you explicitly opt-in.

16.2 Opting Out

If you receive marketing communications from us, you can opt-out by:

Clicking the unsubscribe link in the email
Contacting us at admin@dexetera.xyz

16.3 Transactional Communications

We may send transactional emails (account alerts, order confirmations) regardless of marketing preference, as these are necessary for your account.

17. CHANGES TO THIS PRIVACY POLICY

We may modify this Privacy Policy at any time. Changes are effective immediately upon posting. Your continued use of the Platform constitutes acceptance of the updated policy.

18. CONTACT & DATA SUBJECT REQUESTS

To exercise your privacy rights or report a privacy concern, contact:

Dexetera Email: admin@dexetera.xyz Response time: 30 days (in compliance with GDPR and similar laws)

19. COMPLAINT PROCEDURES

19.1 Informal Resolution

19.2 Regulatory Authority

If unsatisfied, you may lodge a complaint with:

Switzerland: Swiss Data Protection and Information Commissioner (EDÃ–B)
EU: Your national data protection authority
California: California Attorney General or California Privacy Protection Agency
Other jurisdictions: Your local equivalent

END OF PRIVACY POLICY