EarnX

Privacy Policy

Effective: April 27, 2026 · Last updated: April 27, 2026

Plain-English summary. We collect what we need to run your account and execute the trades you approve. We never sell your personal data. Your wallet keys are not stored on our servers.

1. Who we are

This Privacy Policy describes how Earn X Daily LLC (“EarnX,” “we,” “us,” or “our”), a Delaware limited liability company with a registered office at 13157 Mindanao Way, Unit 971, Marina Del Rey, CA 90292, collects, uses, and discloses information when you use the EarnX service available at earnxdaily.com and our native macOS, iOS, and Android applications (collectively, the “Service”).

2. Information we collect

2.1 Information you provide

  • Account information: email address, hashed password, optional display name, time zone.
  • Two-factor authentication: TOTP secret (stored encrypted) if you enable 2FA, plus the timestamps of recent verifications.
  • Wallet addresses: the public addresses you connect or import. We do not store your private keys or seed phrases on our servers in connection with user-approved trades — your client signs transactions on-device.
  • Configuration: per-user trading settings (run mode, risk envelopes, exit thresholds, watchlist).
  • Bring-your-own LLM credentials: if you choose to enable LLM analysis, your API key for Anthropic / OpenAI / similar is stored encrypted at rest. We never log the plaintext key.
  • Third-party integration credentials: if you connect Telegram, Kalshi, or Polymarket, we store the bot token / API key required to use that integration, encrypted at rest.
  • Support communications: the contents of any email or support ticket you send us.

2.2 Information generated by your use of the Service

  • Trading activity: orders, fills, positions, realized and unrealized P&L, watchlist transitions, activity-log events.
  • On-chain transaction signatures: we record signatures of transactions broadcast through the Service so we can reconcile fills against on-chain state. These are public information.
  • Discovery candidates: token contract addresses, scoring outputs, and per-user enrichment results.
  • LLM conversations: if you use the chat or per-card analyze surfaces, your prompts and the model’s responses are stored under your account.

2.3 Information collected automatically

  • Authentication cookies: a short-lived access-token cookie (httpOnly, Secure, SameSite=Lax) and a refresh-token cookie used to keep you signed in. Required to use the Service.
  • Server logs: request timestamps, IP address, user-agent, HTTP method, route template, status code, latency. Retained for up to 90 days for security, abuse-prevention, and capacity planning.
  • Analytics (opt-in): if you accept analytics cookies via our consent banner, we use Google Analytics 4 to record page views and aggregated usage events. You can decline at any time and the relevant cookies will not be set.
  • Billing: if you subscribe to a paid plan, Stripe processes your payment information directly. We receive a Stripe customer ID, subscription status, and the last four digits + brand of the card, but we never see or store the full card number.

3. How we use information

  • To create and operate your account, including authentication and 2FA.
  • To run the trading-loop logic (discovery, watchlist evaluation, portfolio monitoring, exit triggers) on the data you have configured.
  • To execute the trades you approve — by building unsigned transactions and recording the on-chain results once your client signs and broadcasts them.
  • To deliver the integrations you enable (Telegram alerts, prediction-market desks, LLM analysis with your own API key).
  • To send transactional emails (account verification, password reset, security alerts). These are required for the Service and you cannot opt out without closing your account.
  • To send product-related announcements, if you have not unsubscribed. You can unsubscribe from non-transactional email at any time using the link in every such message.
  • To detect, investigate, and respond to abuse, fraud, security incidents, and legal obligations.
  • To improve the Service in aggregate (subject to your analytics consent).

4. Legal bases (EEA / UK users)

If you are in the European Economic Area or the United Kingdom, we rely on the following legal bases:

  • Performance of a contract — to operate your account and provide the Service.
  • Legitimate interests — to secure the Service, prevent abuse, and improve the product, balanced against your rights.
  • Consent — for non-essential cookies and any marketing communications. You can withdraw consent at any time.
  • Legal obligation — to comply with applicable laws, including sanctions screening and tax reporting.

5. How we share information

We do not sell your personal information. We share it only as follows:

  • Service providers we use to run the Service, each under written confidentiality and data-processing terms:
    • Cloud hosting and storage (Google Cloud, AWS S3 / SES / SNS).
    • Database (MongoDB Atlas).
    • Payment processing (Stripe).
    • Solana RPC + WebSocket (Helius), Solana swap routing (Jupiter), price feeds (DexScreener).
    • EVM RPC providers, depending on the chain you use.
    • LLM providers (Anthropic, OpenAI) — only if you bring your own key, and only the prompts you generate.
    • Email delivery (Amazon SES).
    • SMS delivery (Amazon SNS), if you enable SMS-based 2FA.
    • Analytics (Google Analytics 4), opt-in only.
  • Legal disclosure. We may disclose information if compelled by valid legal process, or if disclosure is necessary to protect the rights, property, or safety of EarnX, our users, or the public.
  • Business transfers. If EarnX is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred subject to standard confidentiality protections.
  • With your direction. If you connect a third-party integration (Telegram, Kalshi, Polymarket), we share what is required to make that integration work, on your instruction.

6. International transfers

EarnX is operated from the United States. If you access the Service from outside the U.S., your information will be transferred to and processed in the U.S., where data-protection law may differ from your home jurisdiction. For transfers from the EEA / UK, we rely on Standard Contractual Clauses and equivalent safeguards with our service providers.

7. Data retention

  • Account data: retained while your account is active. Deleted within 30 days of account closure, except where retention is required by law (e.g. tax, sanctions).
  • Trading history: retained for up to 7 years to support dispute resolution and applicable record-keeping obligations.
  • Server logs: up to 90 days.
  • Backups: may persist for up to 35 days after deletion of the live record.

8. Security

We use industry-standard administrative, technical, and physical safeguards, including encryption in transit (TLS 1.2+) and at rest, role-based access controls, hardware security modules for sensitive credential storage, and audit logging. No system is perfectly secure. If we discover a breach affecting you, we will notify you in accordance with applicable law.

9. Your rights

9.1 Everyone

  • Access and download a copy of your account data.
  • Correct inaccurate data through your account settings.
  • Delete your account and associated data, subject to legal retention.
  • Withdraw any consent you have given (e.g. analytics, marketing) at any time.

9.2 California residents (CCPA / CPRA)

You have the right to know what personal information we collect, to request deletion, to correct inaccurate information, to opt out of any “sale” or “sharing” (we do neither), and to limit the use of sensitive personal information. We do not knowingly sell or share the personal information of consumers under 16. To exercise these rights, contact privacy@earnxdaily.com. We will verify your request and respond within 45 days.

9.3 EEA / UK residents

You have the rights to access, rectification, erasure, restriction of processing, data portability, and to object to processing. You also have the right to lodge a complaint with your local data-protection authority.

10. Children

The Service is not directed to anyone under 18. We do not knowingly collect personal information from individuals under 18. If you believe a minor has provided us with personal information, contact privacy@earnxdaily.com and we will delete it.

11. Changes to this Policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice through the Service or by email and update the “Last updated” date at the top of this page. Your continued use of the Service after the change takes effect constitutes acceptance of the updated Policy.

12. Contact

Earn X Daily LLC
13157 Mindanao Way, Unit 971
Marina Del Rey, CA 90292
Privacy: privacy@earnxdaily.com
Legal: legal@earnxdaily.com
Support: support@earnxdaily.com