Privacy Policy
Last Updated: January 13, 2026 | Effective Date: January 13, 2026
🛡️ Our Privacy Commitment
MintIt Hub is built on the principle of user data sovereignty. Your data belongs to you. We store the minimum data necessary to provide our Services, and we never sell your personal information to third parties.
Table of Contents
1. Introduction
This Privacy Policy explains how SPHERING³ LLC ("Company," "we," "us," or "our") collects, uses, discloses, and protects your information when you use the MintIt Hub platform and related services (collectively, the "Services").
By using our Services, you consent to the collection and use of information in accordance with this Privacy Policy.
2. Information We Collect
2.1 Information You Provide
| Data Type | Examples | Purpose |
|---|---|---|
| Wallet Address | Public blockchain address | Account identification, NFT minting |
| Email Address | Optional for notifications | Account recovery, notifications |
| Display Name | Username/alias | Public profile display |
| NFT Content | Images, metadata | NFT creation and storage |
| Payment Information | Processed by Stripe | Subscription billing |
2.2 Automatically Collected Information
| Data Type | Purpose | Retention |
|---|---|---|
| IP Address | Security, fraud prevention | 90 days |
| Device Information | Service optimization | 90 days |
| Browser Type | Compatibility | 90 days |
| Usage Data | Service improvement | 1 year (anonymized) |
2.3 Information We Do NOT Collect
- Private Keys: We NEVER request, collect, or store wallet private keys or seed phrases
- Government IDs: We do not require identity verification documents
- Financial Account Details: Banking information is processed by Stripe, not stored by us
- Social Security Numbers: Not collected for any purpose
3. How We Use Your Information
We use collected information to:
- Provide, maintain, and improve our Services
- Process NFT minting and marketplace listings
- Process payments and prevent fraud
- Send transactional notifications (e.g., minting confirmations)
- Respond to customer support requests
- Detect and prevent security threats
- Comply with legal obligations
- Analyze usage patterns to improve our Services (using anonymized data)
⚠️ What We Don't Do
We do NOT sell, rent, or trade your personal information to third parties for marketing purposes. We do NOT use your data for targeted advertising. We do NOT share your data with data brokers.
4. Data Storage and Security
4.1 Local-First Architecture
MintIt Hub is built on a local-first architecture. This means:
- Your creative work is stored locally on your device by default
- NFT metadata is uploaded to decentralized storage (IPFS) only when you mint
- We do not maintain copies of your unpublished work
4.2 Optional Cloud Backup
If you opt in to cloud backup, your data is stored on PENTARIUM CODEXâ„¢ servers with the following protections:
- Encryption: AES-256 encryption at rest
- Transport Security: TLS 1.3 for all data in transit
- Access Control: You control access via your wallet signature
- Geographic Distribution: Data redundantly stored across multiple secure facilities
- VERASâ„¢ Security: Advanced threat monitoring and anomaly detection
4.3 Security Measures
We implement industry-standard security measures including:
- End-to-end encryption for sensitive data
- Regular security audits and penetration testing
- Multi-factor authentication options
- Secure development practices (OWASP guidelines)
- Employee security training and access controls
5. Information Sharing
We may share your information with:
5.1 Service Providers
| Provider | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing | Payment details (not stored by us) |
| Pinata/IPFS | Decentralized storage | NFT content and metadata |
| Cloudflare | CDN and security | IP address, request data |
| Analytics | Usage analysis | Anonymized usage data only |
5.2 Legal Requirements
We may disclose information if required by law, court order, or government request, or if necessary to:
- Comply with applicable laws or regulations
- Protect our rights, property, or safety
- Prevent fraud or illegal activity
- Respond to lawful requests from law enforcement
6. Blockchain Data
When you mint an NFT, certain information is permanently recorded on the blockchain:
- Your wallet address: Publicly visible as the creator/owner
- Transaction history: All transfers are publicly recorded
- Metadata URI: Link to your NFT's metadata on IPFS
- Smart contract interactions: All function calls are logged
⚠️ Blockchain Permanence
Blockchain data is permanent and cannot be deleted. Once an NFT is minted, the associated transaction and metadata link will exist on the blockchain indefinitely. This is a fundamental characteristic of blockchain technology, not a policy choice by MintIt Hub.
7. Cookies and Tracking
7.1 Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential | Authentication, security | Session / 30 days |
| Preferences | Remember your settings | 1 year |
| Analytics | Usage statistics | 90 days |
7.2 Managing Cookies
You can control cookies through your browser settings. Note that disabling essential cookies may affect the functionality of our Services.
7.3 Do Not Track
We honor Do Not Track (DNT) browser signals. When DNT is enabled, we disable non-essential analytics tracking.
8. Your Privacy Rights
8.1 All Users
Regardless of your location, you have the right to:
- Access your personal data we hold
- Correct inaccurate personal data
- Request deletion of your account and associated data
- Export your data in a portable format
- Opt out of non-essential communications
8.2 EU/EEA Residents (GDPR)
Under the General Data Protection Regulation, you additionally have the right to:
- Object to processing of your personal data
- Restrict processing in certain circumstances
- Data portability
- Lodge a complaint with your supervisory authority
8.3 California Residents (CCPA)
Under the California Consumer Privacy Act, you have the right to:
- Know what personal information is collected
- Know if your personal information is sold or disclosed
- Opt out of the sale of personal information (we do not sell data)
- Non-discrimination for exercising your rights
8.4 Exercising Your Rights
To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days (or as required by applicable law).
9. Children's Privacy
Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors. If we discover that we have collected information from a minor, we will delete it promptly.
If you believe we have collected information from a minor, please contact us immediately at [email protected].
10. International Data Transfers
Our servers are located in the United States. If you access our Services from outside the U.S., your information may be transferred to, stored, and processed in the U.S. where data protection laws may differ from those in your country.
For EU/EEA users, we implement appropriate safeguards including Standard Contractual Clauses to protect transferred data.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the updated policy on our website
- Updating the "Last Updated" date
- Sending email notification for significant changes
Your continued use of our Services after changes constitutes acceptance of the updated policy.
12. Contact Us
For privacy-related questions or to exercise your rights:
SPHERING³ LLC
Email: [email&