Privacy

Last updated: 2026-05-02. Settle is on devnet today. This page covers the live product as it exists now and what we commit to when mainnet ships.

What we collect

• Wallet address when you connect Phantom or another Solana wallet. Public and on-chain by definition.
• Email only if you submit it via the waitlist or merchant onboarding. Stored in our database, accessible only to service-role credentials we control.
• Receipts you generate by sending or receiving. Public on-chain. We store an indexed copy in our database for fast UI rendering.
• Anonymous usage signals (Sentry crash reports, high-level page views). No third-party advertising trackers, ever.

What we don't collect

• Private keys. Settle never sees, stores, or transmits them.
• Transaction signing happens entirely in your wallet adapter. We receive only the signed transaction or signature.
• We don't use Google Analytics, Facebook Pixel, or any ad-network tracker.

What we'd never do

• Sell or rent your email, wallet, or activity to advertisers. Not now, not ever, full stop.
• Read or decrypt sealed memos. Memos use libsodium sealed-box; we don't hold the recipient's decryption key.
• Touch funds in your wallet without your explicit signature.

Where data lives

Database: Supabase (Postgres) hosted in the US. Solana receipts: on-chain (devnet today, mainnet at audit completion). Email errors: Sentry. No data leaves these three systems unless we explicitly integrate a new one and document it here.

Your rights

Email privacy@settle.so to request a copy of your data, deletion of your waitlist entry, or anything else. We respond within 30 days.

This page is a faithful summary, not a legal contract. A formal privacy policy ships before mainnet.