Privacy Policy — PnP Movers

Version 1.0.0 | Effective Date: April 2026

This policy applies to the PnP Movers suite (/movers, /whale, /kols). It is separate from the privacy policy that covers the PnP Bank Statement Processor and the tax tools on this platform.

1. What We Collect

PnP Movers collects the minimum data required to verify your access tier and run the product.

• Wallet address — when you click “Connect Wallet,” your public Solana address is shared with the site so we can check your token balances and stake history against the tier thresholds.
• Signed nonce — a one-time random string your wallet signs to prove you control the address. The signature is verified server-side and discarded; only the cryptographic proof-of-ownership result is retained in the session record.
• Access-token cookie — an httpOnly session cookie that lets you come back without re-signing for the cookie’s lifetime.
• Aggregate usage analytics — page views, button clicks, and feature usage in aggregate, for product improvement. See section 5.

2. What We Do Not Collect

• No personally identifiable information (name, email, phone, address)
• No KYC or identity-verification documents
• No private keys, seed phrases, or wallet credentials of any kind
• No withdrawal or transfer authority over any wallet
• No bank, credit-card, or payment information (PnP Movers has no paid subscription path — access is token-hold based)

3. On-Chain Data

Solana transactions, token balances, and stake positions are public data. We read that data via RPC providers to build the product. The act of connecting your wallet does not expose any information that is not already on-chain and publicly queryable by anyone. Linking a wallet’s activity to a username, display name, or real-world identity is not done by PnP Movers.

4. Local Storage (KOL Tags)

When you label a wallet as a KOL on /movers, the tag is saved to your browser’s localStorage. These tags are private to your browser — they are not sent to our servers, not visible to other users, and not synced across devices. Clearing your browser storage deletes them. A future version may optionally sync tags server-side; that change will be announced and opt-in.

A lightweight server-side audit log may record that a KOL-labeling action occurred (timestamp + wallet-hash prefix + action type), but the specific label content and the labeler’s identity are not persisted beyond the audit entry.

5. Balance Caching

To minimize RPC load and speed up repeat visits, your wallet’s $PNP balance and tier decision are cached in-memory on our server for approximately five minutes after each check. The cache entry is a wallet-address-keyed record of “passed/failed tier X at time T”. Raw balance values are not stored in durable storage. Cache entries expire automatically and are never shared externally.

6. Cookies

PnP Movers uses a small number of cookies:

• Access-token cookie (httpOnly, essential) — keeps you signed in so you don’t re-sign on every page load.
• Preference cookies (optional, functional) — remember UI toggles like “Show stale launches.”
• Analytics cookies (optional) — only set if you accept analytics in the cookie banner. Used for page-view counts.

You can decline non-essential cookies via the cookie banner. Declining does not prevent you from using PnP Movers.

7. Analytics

We track aggregate feature usage (which buttons get clicked, which tabs get opened, which tiers users land in) to prioritize product work. Analytics events do not include your wallet address. Event records are keyed to anonymized session IDs, not to identities.

8. Third-Party Services

PnP Movers queries several third-party data sources, including but not limited to:

• Helius RPC — Solana on-chain data, token account lookups, transaction history
• DexScreener — market-cap, liquidity, and volume data for tracked mints
• Printr — stake-position data for the $PNP staking access path
• Jupiter / Solscan — linked for deep-dive views on specific tokens and transactions

These third parties may log the fact that a request came from our servers. They do not receive your wallet address unless you click a link that explicitly navigates to their site (e.g., the Solscan transaction link on a whale card).

9. Your Choices

• Disconnect — clicking “Disconnect Wallet” clears the access-token cookie immediately. You can reconnect any time.
• Clear local data — clearing your browser’s localStorage for this site deletes your KOL tags and UI preferences.
• Opt out of analytics — decline analytics cookies in the cookie banner.
• Contact us — if you want any record associated with your wallet address expired from server-side caches early, email [email protected]. (Caches roll over every ~5 min anyway.)

10. Data Retention

• Access-token cookies: retained for the cookie’s lifetime (30 days typical); revoked earlier on disconnect.
• Balance cache: ~5 minutes.
• KOL action audit log: retained for operational use, aggregated and rotated periodically.
• Analytics events: retained in aggregate form indefinitely; individual events are rolled up and anonymized.

11. Security

We use HTTPS for all traffic, httpOnly cookies to prevent JavaScript access to session tokens, and standard server-security hygiene. No system is perfectly secure; connect only wallets whose loss you could absorb.

12. Children

PnP Movers is not directed to individuals under 18. We do not knowingly collect information from minors. If you are under 18, do not connect a wallet or use this product.

13. Changes to This Policy

We may update this policy as the product evolves. Material changes will be announced on the platform. The “Effective Date” at the top reflects the most recent revision.