Last updated: December 3, 2025
This Privacy Policy describes how the Console Wallet mobile application handles information. We aim to collect the minimum data needed to operate the Wallet and keep it secure. We do not sell personal data and we do not use data for third‑party advertising.
Console Wallet is a self‑custodial wallet for the Canton network. It lets you store, send, and receive assets and connect to apps. Keys stay on your device.
Scope. This policy covers the Console Wallet application only. It does not cover third‑party websites or apps (“dApps”) you connect to, app stores, or your device vendor’s data practices.
Contact: privacy@consolewallet.io
We design Console Wallet to work with minimal data. Depending on how you use it, we may handle the categories below.
Email address (if you request an access code or join beta/rewards).
Access code (short‑lived, verified server‑side, then discarded).
Status (allowlist / rewards enrollment).
Source: You provide it in the application.
Purpose: Account access, allowlisting, program eligibility, support.
Storage: Email in our auth DB; codes are ephemeral.
Retention: Email until you ask us to delete or leave the program; access codes are discarded after verification.
Private keys / passkeys / seed: Never sent to us. Keys remain on your device (passkeys in OS secure enclave; password mode encrypts the key locally).
Addresses / Party IDs / aliases: Stored locally for your use; may be shown in UI or copied by you.
Source: Generated or imported on your device.
Purpose: Provide core wallet functions.
Storage: Local (storage / secure OS keystore).
Retention: Until you delete local data or remove the application .
Technical logs: user‑agent, OS version, timestamps, error codes, request metadata.
Security signals: Domain risk flags (e.g., punycode/look‑alike checks), rate‑limit counters.
Source: Automatically collected when API is used.
Purpose: Operate and secure the Service; prevent abuse/phishing; debug.
Storage: Server logs and security systems.
Retention: Typically 30–90 days (longer if required for security investigations).
Email content, screenshots, attachments you send us.
Purpose: Respond to your request.
Retention: Up to 24 months for context/audit unless you ask us to delete earlier (subject to legal requirements).
We read and display public Canton data (transactions, offers, addresses, validator info). This data is public by design and not created by us.
Provide the Service: wallet operations, allowlist/access, rewards program.
Security & integrity: prevent phishing/abuse, detect anomalies, enforce rate limits, protect accounts.
Reliability & improvement: diagnose errors; optional telemetry (if you opt in).
Support & communications: respond to requests; send transactional notices (e.g., access code).
Compliance: meet legal obligations if required.
We do not use data for third‑party advertising, and we do not sell personal data.
We share limited data only with the service providers below, and only for the purposes stated.
Category
What may be shared
Purpose
Provider(s)
Cloud hosting
Technical logs, API metadata, allowlist status
Host APIs, secure infrastructure
[e.g., Google Cloud / AWS]
Email delivery
Your email address; access code message
Send access codes / support replies
[e.g., SendGrid / Amazon SES]
Crash/analytics (optional, opt‑in)
Pseudonymous crash/usage events (no keys)
Stability and product improvement
[e.g., Sentry / Amplitude / Plausible]
Error monitoring
Error traces and diagnostics
Debug issues
[e.g., Sentry / Rollbar]
Support
Your support email and attachments
Respond to your request
[e.g., Zendesk / Gmail]
Security (anti‑abuse)
user‑agent, risk indicators
Block attacks; detect phishing
[e.g., Cloudflare / in‑house]
Legal/Compliance
Data required by law
Comply with lawful requests
Government authorities when legally required
We do not share, sell, or license personal data to advertisers or data brokers.
We do not share private keys, passkeys, or seed phrases with any party.
Third‑party dApps & sites. When you connect to a dApp or website, that third party may request signatures or view your public address. Their data practices are governed by their policies; we do not control them.
On device: Keys and wallet data (private keys, passkeys, seed) stay on your device; password mode encrypts keys locally.
Servers: Access emails, allowlist status, technical logs, and (if opted‑in) telemetry may be processed on servers in the USA.
Retention:
Technical logs: 30–90 days (security/debug).
Support emails: up to 24 months.
Account email (allowlist/rewards): until deletion request or program exit.
Telemetry (opt‑in): aggregate trends retained; raw events trimmed/deleted per provider policy.
On‑chain data: public; not controlled by us.
We apply administrative, technical, and organizational measures (encryption in transit, access controls, least‑privilege, monitoring). No method is 100% secure. Because keys never leave your device, device security (OS updates, malware protection) is essential.
We request only the permissions needed to operate the Wallet:
notifications (optional) — show local alerts (e.g., offer received).
identity (only if you use Google sign‑in) — authenticate your account.
Actioned only by you: Copy to clipboard, export key, connect to a site, and sign are user‑initiated actions.
Email and Account Data
You may request that we delete your email or account data at any time. Please note that doing so may affect access to certain features such as allowlists or rewards.
Local Wallet Data
Any wallet data stored locally can be deleted directly through the application`s settings or by removing the application from your device.
Your Privacy Rights
Depending on where you live, you may have certain rights regarding your personal data. These include:
Access – You can request a copy of the personal data we hold about you.
Correction (Rectification) – You can ask us to correct or update inaccurate or incomplete information.
Deletion (Erasure) – You can ask us to delete your personal data, subject to certain legal or contractual limitations.
Restriction or Objection – You can request that we limit or stop processing your personal data in certain situations.
Data Portability – You can request a copy of your data in a structured, commonly used, and machine-readable format and other rights.
Additional Rights for California Residents (CCPA/CPRA)
If you are a California resident, you also have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
Right to Know what categories and specific pieces of personal information we collect, use, disclose, or sell.
Right to Delete personal information we have collected from you, subject to certain exceptions.
Right to Correct inaccurate personal information.
Right to Opt Out of the sale or sharing of personal information and other rights.
How to Exercise Your Rights
To exercise any of these rights, please contact us at privacy@consolewallet.io. We will respond in accordance with applicable privacy and data protection laws.
We will not discriminate against you for exercising your rights.
8) Children
The application is aimed at general audiences and professionals. It is not directed to children and we do not knowingly collect personal data from anyone under 16.
If we change this policy, we’ll update the date above and, where appropriate, show an in‑product notice.
Email: privacy@consolewallet.io
Postal Address: PixelPlex Ltd., Kemp House, 152–160 City Road, London, UK