Nexus is a private, invitation-only oversight tool operated by [COMPANY/OWNER] ("we", "us").
It is used by authorized account holders to monitor market-making, treasury, and on-chain activity. This policy
explains what we collect, why, and how it is protected. We do not sell your data, show ads, or
use third-party advertising trackers.
Information we collect
- Account & login: your username, a securely hashed password (PBKDF2), and — if you enable them — a two-factor (TOTP) secret or passkey. If you choose Sign in with Apple or Google, we receive the email address associated with that account.
- Operational data you choose to monitor: exchange account balances and holdings (read via read-only exchange API keys you provide), trading and market data, and the wallet addresses / on-chain activity you add to watch.
- Exchange API keys you connect, which are stored encrypted (AES via an encrypted vault) and used only to read your balances and market data on your behalf. We recommend read-only keys; trading keys, if added, are never used to move funds without your explicit, present authorization.
- Technical: standard server logs (e.g. request times) needed to operate and secure the service.
How we use it
- To authenticate you and provide the dashboard's monitoring, reporting, and alerting features.
- To deliver alerts and reports through the channels you configure (e.g. Telegram, email).
- To secure the service and prevent unauthorized access.
Third parties
We exchange data only with services needed to run the features you use:
- Cryptocurrency exchanges — read-only API calls to fetch your balances and market data.
- Blockchain & market data providers (e.g. block explorers, price feeds) — to read public on-chain and price data.
- Apple / Google — only if you use their sign-in.
- Notification providers you configure (e.g. Telegram, your email provider) — to deliver alerts you asked for.
We do not sell, rent, or share your personal data with anyone for advertising or marketing.
Data storage & security
Data is stored on a private, access-controlled server. API keys and other secrets are kept in an encrypted vault
and are never displayed back in full or transmitted to other users. Access requires authentication, and money-related
actions are additionally protected behind a password-gated vault.
Data retention & your rights
We retain your data for as long as your account is active. You may request access to, correction of, or deletion of
your data, or close your account, by contacting us at [CONTACT-EMAIL]. We will
delete your data on request, subject to any legal retention obligations.
Children
Nexus is not directed to children under 13 (or the minimum age in your jurisdiction) and we do not knowingly collect their data.
Changes
We may update this policy; material changes will be reflected by the "Effective" date above and, where appropriate, an in-app notice.
Contact
[COMPANY/OWNER], [ADDRESS/JURISDICTION] · [CONTACT-EMAIL]
Nexus is a private oversight tool, not investment advice. Market data and analytics are provided for monitoring only.