Fortichain Privacy Policy
This Privacy Policy Will Help You Better Understand How We Collect, Use, And Share Your Personal Information
Fortichain ("we," " our," or "us" ) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our decentralized application (dApp) and related services (collectively, the "Services"). The Services facilitate smart contract auditing through interactions among Project Owners, Researchers, Validators, and Administrators on a blockchain-based platform. By accessing or using our Services, you agree to the terms of this Privacy Policy. If you do not agree, please do not use our Services.
1. Information We Collect
We collect information that you provide directly to us, information generated through your use of the Services, and information from third parties. The types of information may include:
Personal Information
- Account Information: When you create an account as a Project Owner, Researcher, Validator, or Administrator, we may collect your username, email address, wallet address (for blockchain interactions), and any profile details you provide (e.g., bio, contact information).
- Project and Report Data: Project Owners may submit repository links, project details (e.g., severity levels, timelines, payout amounts), and ratings. Researchers and Validators may submit reports, feedback, and interactions related to vulnerabilities.
- Communication Data: Messages, notifications, help center inquiries, blog posts, or any other content you submit through the Services.
Usage and Device Information
- Log Data: Automatically collected data such as IP address, browser type, operating system, access times, pages viewed, and referring URLs.
- Blockchain Data: Publicly visible data on the blockchain, including transaction hashes, wallet interactions, and smart contract executions related to project submissions, validations, and payouts.
- Metrics and Analytics: Aggregated data on user activity, such as reputation scores, project metrics, and platform usage statistics.
Cookies and Tracking Technologies
We use cookies, web beacons, and similar technologies to collect information about your interactions with the Services. This may include session cookies for authentication, persistent cookies for preferences, and analytics cookies to track usage patterns.
2. How We Use Your Information
- Directly from You: When you register projects, write reports, interact with users, or contact support.
- Automatically: Through server logs, cookies, and blockchain monitoring tools as you navigate the dApp.
4. Sharing of Information
We do not sell your personal information. We may share information in the following ways:
- With Other Users: Certain data is shared within the platform, such as project details with assigned Researchers and Validators, or reputation scores publicly.
- Service Providers: With third-party vendors for hosting, analytics, payment processing (e.g., for payouts), or blockchain services, under strict confidentiality agreements
- Blockchain Publicity: Data submitted to the blockchain (e.g., transactions) is inherently public and immutable.
- Legal Requirements: If required by law, subpoena, or to protect our rights, safety, or property. Business Transfers: In connection with a merger, acquisition, or sale of assets.
5. Data Security
We implement reasonable security measures, including encryption, access controls, and blockchain-based immutability, to protect your information from unauthorized access, alteration, or disclosure. However, no method is 100% secure, especially on decentralized networks. You are responsible for securing your wallet and account credentials.
In the event of a data breach, we will notify affected users as required by law.
6. Your Rights and Choices
Depending on your location, you may have rights under data protection laws (e.g., GDPR, CCPA):
- Access and Correction: Request access to or correction of your personal information.
- Deletion: Request deletion of your data, subject to legal or operational requirements (note: blockchain data cannot be deleted).
- Opt-Out: Opt out of marketing communications or certain data processing.
- Cookies: Manage cookie preferences through your browser settings.
To exercise these rights, contact us at [privacy@fortichain.com]. We may verify your identity before responding.
7. International Data Transfers
Our Services may involve data transfers across borders. We ensure appropriate safeguards, such as standard contractual clauses, for international transfers.
8. Children's Privacy
Our Services are not intended for children under 13 (or 16 in some jurisdictions). We do not knowingly collect information from children. If we learn of such collection, we will delete it promptly.
9. Third-Party Links and Services
The Services may link to third-party sites (e.g., GitHub repos). We are not responsible for their privacy practices. Review their policies separately.
10. Changes to This Privacy Policy
We may update this policy periodically. Changes will be posted here with the updated date. Continued use of the Services constitutes acceptance of the revised policy.
11. Contact Us
If you have questions about this Privacy Policy, contact us at: