Privacy Policy

Yeald7 ("we," "us," or "our") operates a treasury-backed digital asset marketplace accessible at this platform. This Privacy Policy explains how we collect, use, disclose, and protect information about you when you access or use our services.

By creating an account or using our platform, you agree to the collection and use of information in accordance with this policy. If you do not agree with our practices, please do not use our services.

2.1 Information You Provide

• Account information: Email address, security question answers (stored as one-way hashes), and optional biometric credentials (stored only on your device).
• Identity verification: If required by applicable law, we may collect government-issued identification documents, date of birth, and address information for KYC/AML compliance.
• Invite and referral data: The invite code used during registration, which establishes your lineage chain.
• Financial data: Wallet addresses, transaction history, and funding wallet balances associated with your account.
• Support communications: Any information you voluntarily provide when contacting our support team.

2.2 Information Collected Automatically

• Device and usage data: IP address, browser type and version, operating system, device identifiers, pages visited, and timestamps.
• Authentication logs: Login attempts, session tokens, and multi-factor authentication events for security purposes.
• Transaction logs: All platform transactions are recorded on an immutable ledger for audit and compliance purposes.

2.3 Information from Third Parties

• Google OAuth: If you sign in with Google, we receive your name and email address as permitted by your Google account settings.
• Quidax: Our crypto custody partner provides wallet addresses and deposit/withdrawal confirmations.

We use the information we collect to:

• Create and maintain your account and verify your identity.
• Process transactions, unit reservations, and reward distributions.
• Calculate and distribute lineage income through your sponsorship chain.
• Send transactional communications (OTP codes, trade confirmations, membership renewals, billing receipts).
• Detect, prevent, and investigate fraud, security incidents, and prohibited activities.
• Comply with applicable laws, regulations, and legal processes including anti-money laundering (AML) and know-your-customer (KYC) requirements.
• Improve platform performance, reliability, and user experience.
• Communicate service updates, policy changes, and important notices.

We do not sell your personal information to third parties. We do not use your data for advertising purposes.

We disclose your information only in the following circumstances:

• Service providers: We share data with trusted partners (Resend for email delivery, Quidax for crypto custody, Firebase for push notifications) strictly necessary to operate the platform. These parties are bound by data processing agreements.
• Lineage chain visibility: Your membership tier and sponsor relationship are visible within your immediate lineage chain as part of the platform's core functionality. Your email address is never shared with other members.
• Legal requirements: We may disclose information if required by law, court order, or government authority, or when we believe disclosure is necessary to protect our rights or the safety of users.
• Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

We implement industry-standard security measures to protect your information:

• All data is encrypted in transit using TLS 1.3 and at rest using AES-256.
• Security question answers are stored as one-way cryptographic hashes and cannot be reversed.
• Biometric data (Face ID, fingerprint) is processed and stored exclusively on your device's secure enclave — we never receive or store biometric information.
• Wallet private keys are managed by our regulated custody partner and are never stored on our servers.
• Access to personal data is restricted to authorized personnel on a need-to-know basis.
• We conduct regular security audits and penetration testing.

No method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

We retain your personal information for as long as your account is active or as needed to provide services. We retain transaction records and account activity logs for a minimum of 7 years to comply with financial regulations, even after account closure. Upon account termination, non-regulatory personal data is deleted or anonymized within 90 days.

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal information, subject to legal retention requirements.
• Portability: Receive your data in a structured, machine-readable format.
• Restriction: Request that we limit the processing of your information.
• Objection: Object to processing based on legitimate interests.

To exercise these rights, contact us at privacy@yeald7.com. We will respond within 30 days.

We use strictly necessary session cookies to maintain your authenticated session. We do not use advertising cookies, third-party analytics cookies, or tracking pixels. The platform uses local storage for UI preferences (theme, language) only.

Our platform is not intended for persons under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected information from a minor, contact us immediately at privacy@yeald7.com.

Your information may be processed in countries other than your own. Where we transfer data outside your jurisdiction, we implement appropriate safeguards including standard contractual clauses or equivalent protections as required by applicable law.

We may update this Privacy Policy periodically. We will notify you of material changes by email and by posting a notice on the platform at least 14 days before the changes take effect. Continued use of the platform after the effective date constitutes acceptance of the updated policy.

For privacy-related inquiries, contact our Data Protection Officer: