Privacy Policy

Effective: 2026-04-25 · Testnet Beta

dGENwalk ("we", "the app") is a stake-to-earn fitness app currently in Testnet Beta on Base Sepolia. This policy explains what data we collect, why, and your rights.

What we collect

• Wallet address. Your Base Sepolia EOA, used to associate step counts and stake balances with your on-chain account.
• Step counts and walking session metadata. Daily step counts read from the device's TYPE_STEP_COUNTER, TYPE_STEP_DETECTOR, accelerometer, and gyroscope. Session start time, duration, and approximate distance during a walk session.
• Coarse location. Used only during an active walk session for anti-cheat (sanity check that movement is consistent with walking). Not stored beyond the session.
• Device-issued auto-sync token. A per-wallet, server-side bearer token that lets the device submit step attestations in the background. Stored encrypted on-device. 14-day TTL.
• IP address. Used by the rate limiter only. Stored hashed for at most 180 minutes.

What we don't collect

• No name, email, phone, government ID, photos, contacts, or precise GPS tracks.
• No advertising IDs, Meta/Google SDKs, or third-party analytics.

How we use it

• To produce signed EIP-712 step attestations the user can submit on-chain.
• To compute challenge progress and finalize challenges via the StakedChallenge contract on Base Sepolia.
• To detect step spoofing (sensor fusion + IP rate limit + global attestation budget).

Sharing

We do not sell, rent, or share personal data. Step counts you choose to attest become a public on-chain record (StepOracle on Base Sepolia) and are permanent. Choose carefully which days you attest.

Retention

• Wallet ↔ step day records: as long as the corresponding on-chain attestation exists (effectively permanent on-chain; backend cache mirrors this).
• Auto-sync grants: 14 days from issuance.
• Rate-limit buckets: 180 minutes.
• Admin audit logs: 90 days.

Your rights

Under GDPR and CCPA you may request access, correction, or deletion of any data tied to your wallet. Email support. Note: data already on-chain (step attestations posted to StepOracle) cannot be erased.

Children

Not directed at children under 13. Do not use the app if you are under 13.

Changes

Material changes will be announced in-app and reflected here. Continued use after changes constitutes acceptance.

Contact

balasavijaytheking@gmail.com