← HomeDFB Warden

Privacy policy

Last updated: April 2026

This notice describes our data practices in plain language. It is not legal advice. If you need a formal GDPR Article 13/14 notice tailored to your deployment, have it reviewed by qualified privacy counsel.

1. Who is responsible

The controller for personal data processed through the Service is DFB, unless another entity is identified in a separate agreement (for example a dedicated enterprise deployment). Contact: privacy@dfb.network.

2. Data we process

Depending on how you use the Service, we may process:

  • Wallet-related identifiers, such as public wallet addresses and Safe contract addresses you interact with;
  • Authentication data, such as a signed message (SIWE) and a short-lived server session tied to your wallet, to keep you logged in;
  • Technical and security logs, such as IP address, user agent, timestamps, and error diagnostics, to operate and protect the Service;
  • Product configuration you submit, such as labels, transaction metadata, or bot allowlists you store via the application backend (if enabled in your deployment);
  • Optional analytics, only if you consent via our cookie banner (see below).

We do not ask you to share seed phrases or private keys through the Service, and you should never submit them.

3. Blockchain and public ledgers

When you execute transactions, data you submit may be written to public blockchains. That data is typically immutable, globally replicated, and outside our control. Erasure or rectification rights may not be fully enforceable on-chain even when we honor requests for data we hold off-chain.

4. Purposes and legal bases (EEA/UK reference)

Where the GDPR applies, we rely on:

  • Performance of a contract (Art. 6(1)(b)) — operating the Service you request, including authentication and executing your instructions;
  • Legitimate interests (Art. 6(1)(f)) — securing the Service, preventing abuse, debugging, and improving reliability, balanced against your rights;
  • Consent (Art. 6(1)(a)) — non-essential cookies / analytics when you choose “Accept all” in the cookie banner;
  • Legal obligation (Art. 6(1)(c)) — where we must retain or disclose information to comply with law.

5. Cookies and similar technologies

We use essential cookies or similar storage (for example an HTTP-only session cookie after you sign in) that are strictly necessary to provide the Service. These are not used for cross-site advertising.

If you opt in, we may set optional cookies or load analytics tools to understand usage in the aggregate. You can change your mind anytime via Cookie preferences in the site footer. Details: Cookie policy.

6. Recipients and transfers

We use infrastructure and communications providers (for example hosting, databases, RPC or node providers) to run the Service. They process data on our instructions where they act as processors. Some providers may be located outside your country; where required, we use appropriate safeguards such as standard contractual clauses.

Wallet connectors and wallet software are provided by third parties under their own terms. We do not sell your personal data.

7. Retention

We retain personal data only as long as needed for the purposes above, including security and legal requirements. Session cookies expire after a limited period. Server logs may be retained for a bounded window. On-chain data is not controlled by us and may persist indefinitely.

8. Your rights

Depending on your location, you may have rights to access, rectify, erase, restrict, or object to certain processing, and to data portability. You may withdraw consent for optional analytics at any time via the cookie banner. To exercise rights, contact privacy@dfb.network. You may also lodge a complaint with your local supervisory authority.

9. Contact

Privacy inquiries: privacy@dfb.network. Related: Terms of service.