Privacy Policy

1. Introduction

Myra.fun ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cryptocurrency trading platform and related services (the "Service").

Please read this Privacy Policy carefully. By using the Service, you consent to the practices described in this policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide to us, including:

• Account Information: Username, email address (if provided), wallet addresses
• Authentication Data: Wallet signatures for login verification
• Exchange Credentials: API keys and secrets for connecting to third-party exchanges (encrypted and stored securely)
• Trading Preferences: Agent configurations, trading strategies, risk parameters
• Communication Data: Messages sent to our AI terminal, support inquiries
• Profile Information: Display name, avatar, bio, social media handles (Twitter)

2.2 Automatically Collected Information

When you use our Service, we automatically collect certain information:

• Usage Data: Pages visited, features used, time spent, interaction patterns
• Device Information: Browser type, operating system, device identifiers
• Log Data: IP address, access times, referring URLs, error logs
• Trading Activity: Positions opened/closed, trade history, agent performance (stored in our database)
• Analytics Data: Aggregated usage statistics via Google Analytics and Hotjar

2.3 Blockchain Information

Since we integrate with blockchain-based exchanges, certain information is publicly available on the blockchain, including transaction hashes, wallet addresses, and trading activity. This information is not controlled by us and is inherently public.

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Provision

• Authenticate your identity and provide access to your account
• Execute trading operations through connected exchanges
• Operate and manage AI trading agents on your behalf
• Process your commands and queries to the AI terminal
• Display your trading history and performance metrics
• Facilitate paper trading simulations

3.2 Service Improvement

• Analyze usage patterns to improve features and user experience
• Develop new features and functionalities
• Optimize AI model performance and accuracy
• Conduct research and analytics

3.3 Communication

• Send technical notices, updates, and security alerts
• Respond to your support requests and inquiries
• Notify you of important changes to our Service or policies
• Send optional marketing communications (with your consent)

3.4 Security and Compliance

• Detect, prevent, and address fraud, security issues, and technical problems
• Monitor for suspicious or illegal activity
• Comply with legal obligations and regulatory requirements
• Enforce our Terms of Service

4. Information Sharing and Disclosure

We do not sell your personal information to third parties.

We may share your information in the following circumstances:

4.1 Service Providers

• Cloud hosting providers (for infrastructure)
• Database services (MongoDB for data storage)
• Analytics providers (Google Analytics, Hotjar)
• AI model providers (OpenAI, Anthropic, DeepSeek for analysis features)

These service providers are bound by confidentiality obligations and may only use your information to perform services on our behalf.

4.2 Third-Party Exchanges

When you connect your exchange accounts, we transmit your API credentials (encrypted) to execute trades on your behalf. Each exchange operates under its own privacy policy and terms of service.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Valid legal process (subpoena, court order, search warrant)
• Requests from law enforcement or regulatory authorities
• Protection of our rights, property, or safety
• Investigation of potential violations of our Terms
• Prevention of fraud or illegal activities

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity. We will notify you via email or prominent notice on our Service of any such change in ownership or control.

4.5 Public Information

Information you choose to make public (e.g., public agent profiles, leaderboard participation) will be visible to other users. Your wallet address may be visible in on-chain transactions.

5. Data Security

We implement appropriate technical and organizational security measures to protect your information:

• Encryption: API keys and sensitive data are encrypted at rest and in transit
• Access Controls: Strict access controls limit who can view your information
• Secure Infrastructure: Use of industry-standard cloud security practices
• Regular Audits: Periodic security assessments and updates
• No Fund Custody: We never hold or control your cryptocurrency assets

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You acknowledge and accept this inherent risk.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your activity on our Service. For detailed information, please see our Cookie Policy.

Types of Cookies:

• Essential Cookies: Required for authentication and core functionality
• Analytics Cookies: Google Analytics (track usage and improve service)
• Preference Cookies: Remember your settings and preferences
• Session Cookies: Maintain your login state

You can control cookies through your browser settings. Note that disabling certain cookies may limit functionality of the Service.

7. Your Privacy Rights

7.1 General Rights

You have the right to:

• Access the personal information we hold about you
• Request correction of inaccurate or incomplete information
• Request deletion of your personal information (subject to legal obligations)
• Object to or restrict certain processing of your information
• Receive a copy of your data in a portable format
• Withdraw consent for optional data processing

7.2 GDPR Rights (European Users)

If you are a resident of the European Economic Area (EEA) or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR):

• Right to Access: Confirm whether we process your data and obtain a copy
• Right to Rectification: Correct inaccurate or incomplete personal data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restriction: Limit how we process your data in certain circumstances
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for consent-based processing
• Right to Lodge a Complaint: File a complaint with your local data protection authority

7.3 California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information held by us
• Right to opt-out of sale of personal information (we do not sell your information)
• Right to non-discrimination for exercising CCPA rights

7.4 Exercising Your Rights

To exercise any of these rights, please contact us via Twitter @myradotfun or Telegram t.me/myradotfun. We will respond to your request within 30 days (or as required by applicable law).

8. Data Retention

We retain your personal information for as long as necessary to:

• Provide you with our Service
• Comply with legal obligations (e.g., tax records, anti-money laundering requirements)
• Resolve disputes and enforce our agreements
• Maintain security and prevent fraud

Trading Data: We retain trading history and position data for at least 7 years as may be required by financial regulations.

Account Deletion: If you request account deletion, we will delete or anonymize your personal information within 90 days, except for information we are required to retain by law.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country.

We use appropriate safeguards to ensure your information is protected, including:

• Standard contractual clauses approved by the European Commission
• Encryption of data in transit and at rest
• Compliance with applicable data protection frameworks

10. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are under 18, you must not use our Service or provide any information to us.

If we learn that we have collected personal information from a child under 18, we will take steps to delete such information as quickly as possible. If you believe we have collected information from a child under 18, please contact us immediately.

11. Third-Party Links and Services

Our Service may contain links to third-party websites, exchanges, or services that are not owned or controlled by Myra.fun. We are not responsible for the privacy practices of these third parties.

We strongly advise you to review the privacy policies of any third-party services you interact with:

• Aster DEX
• Pacifica Exchange
• Hyperliquid
• Lighter Protocol
• Wallet providers (e.g., MetaMask, WalletConnect)

12. Data Security Measures

We implement the following security measures to protect your information:

• Encryption: AES-256 encryption for sensitive data at rest, TLS 1.3 for data in transit
• API Security: Exchange API keys are encrypted and never exposed to the client
• Access Control: Role-based access controls and principle of least privilege
• Authentication: Web3 wallet-based authentication, no passwords stored
• Monitoring: Continuous monitoring for security threats and anomalies
• Regular Updates: Timely security patches and updates
• Secure Development: Security best practices in code development

Important: We do not store private keys or seed phrases. You are solely responsible for maintaining the security of your wallet and never sharing your private keys with anyone, including us.

13. Analytics and Advertising

13.1 Google Analytics

We use Google Analytics to understand how visitors use our Service. Google Analytics collects information such as how often users visit our site, what pages they visit, and what other sites they used prior to coming to our site.

You can opt-out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on:tools.google.com/dlpage/gaoptout

13.2 Hotjar

We use Hotjar for user behavior analytics. Hotjar may collect data about your device, browser, and interaction with our site to help us improve user experience.

14. Do Not Track Signals

Some web browsers have a "Do Not Track" feature. Currently, there is no industry standard for how to respond to Do Not Track signals. We do not currently respond to Do Not Track signals, but we may do so in the future as standards develop.

15. Email Communications

If you provide an email address, you may receive:

• Transactional emails (account security, trade confirmations)
• Service updates and announcements
• Marketing communications (with your consent)

You can opt-out of marketing emails by following the unsubscribe link in any marketing email. You cannot opt-out of essential service communications related to your account.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email (if provided) or through a notice on our Service
• Obtain your consent if required by law

Your continued use of the Service after changes to this policy constitutes acceptance of the updated policy. We encourage you to review this policy periodically.

17. Your Choices and Control

You can control certain aspects of your information:

• Account Information: Update your profile through account settings
• Exchange Connections: Disconnect exchange API keys at any time
• Public Profile: Control whether your agent is public or private
• Data Deletion: Request account and data deletion by contacting us
• Cookie Preferences: Manage through browser settings
• Marketing Opt-Out: Unsubscribe from promotional communications

18. Limitations on Privacy

Due to the nature of blockchain technology and decentralized exchanges:

• On-chain transactions are permanently public and immutable
• Wallet addresses associated with your account may be linkable to your identity
• We cannot delete information recorded on public blockchains
• Third-party exchanges maintain their own records outside our control

19. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Twitter: @myradotfun
• Telegram: t.me/myradotfun

For GDPR-related requests, please clearly state "GDPR Request" in your communication.