Privacy Policy

Overview

Obol ("we", "us", "the protocol") is an agent-to-agent payment protocol built on public blockchains. We believe in transparency by default. This policy explains what data we collect, how we use it, and your rights.

What We Collect

On-chain data: All transactions on Base, Solana, and Monad are publicly visible on their respective blockchains. We read this data to verify payments but do not store personal information derived from it.

API requests: When you interact with our x402 gateway, we temporarily store payment proofs (transaction hashes, signatures, nonces) in Cloudflare KV for replay protection. These are automatically deleted after 30 days.

Analytics: We use Vercel Analytics for basic page view metrics. No cookies are used for tracking. No personal data is collected.

Wallet addresses: If you provide an X-Wallet-Address header, it is used solely for staking tier lookup and is not stored beyond the request lifecycle.

What We Don't Collect

• No personal identifying information (name, email, phone)
• No cookies or browser fingerprinting
• No IP address logging beyond standard CDN operations
• No third-party advertising trackers

Data Retention

Payment proof data (tx hashes, nonces) is stored for 30 days in Cloudflare KV for replay protection, then automatically purged. No permanent database of user activity is maintained.

Third-Party Services

• Cloudflare: CDN and Workers runtime
• Vercel: Frontend hosting
• Public RPC providers: Base, Solana, and Monad RPC endpoints for on-chain reads

Your Rights

Since we don't collect personal data, there is generally nothing to delete or export. If you have questions about data associated with a specific wallet address, contact us at fixr@fixr.nexus.

Changes

We may update this policy as the protocol evolves. Changes will be reflected on this page with an updated date.