Privacy Policy | Audithunt

1. Introduction

Audithunt ("we", "us", "our") respects your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our AI-powered smart contract auditing platform ("Service"). We are committed to protecting your data and maintaining transparency about our practices.

2. Information We Collect

Account Information:

Email address (if you register with email)
Cryptocurrency wallet address (if you register with wallet)
GitHub profile information (if you use GitHub login)
Display name (optional)

Usage Data:

Smart contracts uploaded for analysis (processed temporarily)
Audit reports generated
API usage metrics
Feature usage patterns (anonymized)

Technical Data:

IP address (for security and rate limiting)
Browser type and version
Device information

3. How We Use Your Information

Provide, maintain, and improve the Service
Process and deliver smart contract audit reports
Authenticate your identity and manage your account
Process payments and manage subscriptions
Send transactional emails (account verification, reports, billing)
Detect and prevent abuse, fraud, and security threats
Aggregate anonymized data for improving detection algorithms

4. What We Do NOT Do

We do NOT sell your personal data to third parties
We do NOT send marketing or promotional emails
We do NOT share your email or wallet address with advertisers
We do NOT share your uploaded smart contracts with third parties
We do NOT use your code to train models sold to competitors

5. Data Security

We implement industry-standard security measures to protect your data:

All data in transit is encrypted via TLS 1.3
Passwords are hashed using Argon2 (never stored in plaintext)
Wallet addresses are stored with application-level encryption
Database access is restricted and monitored
API keys are hashed before storage
Infrastructure is protected by Cloudflare WAF and DDoS mitigation

Your information is kept secure. Only authorized personnel have access to user data, and only when necessary for operating the Service.

6. Data Retention

Uploaded smart contracts are processed in temporary storage and may be retained for up to 30 days for report access and re-analysis. Audit reports are retained for the duration of your account. Account data is retained until you delete your account. Anonymized, aggregated analytics data may be retained indefinitely for improving the Service.

7. Your Rights

You have the right to:

Access — request a copy of your personal data
Rectification — correct inaccurate personal data
Erasure — request deletion of your account and associated data
Portability — receive your data in a machine-readable format
Objection — object to processing of your data

To exercise these rights, contact us at [email protected].

8. Cookies

We use essential cookies for authentication (session tokens) and functionality. We do not use advertising or tracking cookies. No third-party analytics trackers are embedded on our site.

9. Third-Party Services

The Service integrates with limited third-party services for essential functionality:

Cloudflare (CDN, security, DNS)
GitHub (optional OAuth authentication)
Blockchain RPC providers (for on-chain verification)

Each third-party service is subject to their own privacy policies.

10. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated through the Service or via email. Continued use after changes constitutes acceptance.

11. Contact

For privacy-related questions or data requests, contact us at [email protected].