PolyMaster Privacy Policy

1. Who we are and scope

This Privacy Policy is issued by UCONNECT GLOBAL LLC, a Florida limited liability company doing business as “PolyMaster” (“PolyMaster,” “we,” “us,” or “our”), and applies to information we process through the PolyMaster websites, applications, APIs, and services (the “Platform”).

By using the Platform, you acknowledge this Privacy Policy. If you do not agree, you must not use the Platform. This Policy is incorporated into our Terms of Service.

2. Information we collect

We collect information you provide directly, information generated through your use of the Platform, and limited technical information necessary to secure, operate, and improve the service. The categories collected depend on the features you use.

• Account and identity data: name, email address, password (stored only as a salted hash), authentication identifiers, role, account status, and invite status.
• Configuration data: selected Source Addresses, plan selection, trading-account metadata, credential-status metadata, risk and sizing settings, and execution preferences.
• Transactional and billing data: plan, usage and builder-fee records, and limited payment metadata processed by our payment providers (we do not store full card numbers).
• Operational and diagnostic data: audit events, feature usage, device and browser characteristics, IP address and IP-derived security signals, and error telemetry.
• Communications data: messages you send through onboarding, support, or feedback channels.

3. Information we protect from exposure

The Platform is designed so that sensitive credential material is not retrievable through ordinary user or administrative interfaces after submission. We mask or withhold sensitive values in audit logs, operational logs, and administrative views to reduce exposure risk.

• Raw private keys, mnemonics, seed phrases, and secret values are not returned to you after submission and are handled on a write-only, backend-only basis.
• Full credential references are masked or withheld from user-facing and admin-facing views.
• Raw external payloads and secret-manager values are not exposed in normal interface or reporting workflows.

4. How we use information

• To create and manage accounts, authenticate users, and enforce access controls.
• To provide onboarding, trading configuration, order automation, activity reporting, and billing administration.
• To process payments, apply usage-based and builder fees, and maintain financial records.
• To monitor reliability, investigate incidents, detect and prevent fraud and abuse, and maintain Platform security.
• To improve product design, prioritize features, and measure operational performance.
• To comply with legal, tax, and regulatory obligations, enforce our terms, and protect the rights, safety, and property of users, PolyMaster, and third parties.

5. Legal bases for processing

Where required by applicable law (for example, in the EEA or UK), we process personal information on the bases of performance of our contract with you, our legitimate interests in operating and securing the Platform and preventing fraud, compliance with legal obligations, and your consent where consent is required. Where we rely on legitimate interests, we balance them against your rights and interests.

6. How we share information

We do not sell your personal information, and we do not “share” it for cross-context behavioral advertising as those terms are defined under applicable U.S. state privacy laws. We disclose information only as described below.

• Service providers and processors: infrastructure and hosting, authentication, email delivery, logging, analytics, and customer-support vendors, acting on our instructions under contract.
• Payment providers: to process charges and maintain billing records.
• Professional advisers, insurers, auditors, and corporate affiliates, where reasonably necessary.
• Authorities and counterparties: law enforcement, regulators, courts, or others where required by law or necessary to protect rights, safety, or the integrity of the Platform.
• Business transfers: in connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to this Policy.

7. Third-party services and venues

When you connect or interact with third-party venues, wallets, or services through the Platform, those providers process information under their own privacy policies, which we do not control. On-chain activity you direct may be recorded on public blockchains or venue systems outside our control and may be permanent and publicly accessible.

8. Cookies, local storage, and similar technologies

We use cookies, session tokens, and local browser storage to maintain sign-in state, remember appearance and theme preferences, support essential security controls, and operate the web application.

Some browser-stored values relating to user-experience preferences may persist after sign-out on the same device. You can control cookies through your browser, though disabling some may impair functionality. We do not currently respond to “Do Not Track” signals; we honor recognized opt-out preference signals where required by law.

9. Data retention

We retain information for as long as reasonably necessary to operate the service, maintain financial and audit records, investigate incidents, comply with legal and tax obligations, resolve disputes, and enforce our agreements. Retention periods differ across data categories; audit, security, and transactional records may be retained longer than temporary onboarding state. When information is no longer needed, we delete or de-identify it.

10. Security

We use administrative, technical, and organizational measures intended to protect information against unauthorized access, use, alteration, and disclosure, including access controls, secret-handling restrictions, masking, encryption in transit, and backend-owned processing.

No security program is perfect, and we cannot guarantee absolute security. You are responsible for protecting your email inbox, devices, passwords, and any external secret-provider accounts or wallets connected to your use of the Platform.

11. International transfers

We operate from the United States, and information may be processed and stored in the United States and other jurisdictions that may have different data-protection standards than your location. Where required, we implement appropriate safeguards for cross-border transfers.

12. Your privacy rights

Depending on where you live and applicable law, you may have rights to access, correct, delete, or receive a portable copy of your personal information, to object to or restrict certain processing, and to withdraw consent. U.S. state-law residents (including California) may have rights to know, delete, correct, and to not be discriminated against for exercising those rights; because we do not sell or share personal information for cross-context behavioral advertising, no related opt-out is required.

To exercise your rights, contact us at support@polymasterbot.com. We may need to verify your identity and authority before responding, and certain rights are subject to legal exceptions. You may also have the right to lodge a complaint with your local data-protection authority.

13. Children’s privacy

The Platform is not intended for children and may not be used by anyone under 18 or under the age required to enter into a binding contract in their jurisdiction. We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will take appropriate steps to delete it.

14. Changes to this Policy

We may update this Privacy Policy to reflect product, legal, operational, or security changes. When we do, we will revise the “last updated” date and, where appropriate, provide additional notice. Your continued use of the Platform after the effective date constitutes acceptance of the updated Policy.

15. Contact us

For privacy questions or requests, contact UCONNECT GLOBAL LLC (d/b/a PolyMaster) at support@polymasterbot.com.