This Privacy Policy (the “Policy”) describes how Overdraft (“Overdraft“, the “Company“, “we”, “us” or “our”) collects, uses, and shares data in connection with the Overdraft web app (overdraft.com) and all of our other properties, products, and services (the “Services”). Your use of the Services is subject to this Policy as well as our Terms of Service. This Privacy Policy describes our policies and procedures on the collection, use and disclosure of your information when you use the Service and tells you about your privacy rights and how the law protects you.

• Overdraft is a protocol governed by smart contracts on L1/L2 chains
• We do not collect or store personal data such as your first name, last name, residential address, date of birth, email address, or IP address, in connection with your use of the Services.
• In the Overdraft beta, we centrally verify the transaction. Cookie data is sent securely from the users device to our server for this purpose. We do not save this data. Once the full product launches, we will enable users to create zero-knowledge proofs of payments via our extension, which will parse payment data to find the relevant transaction. All of this data will be kept strictly private, and the proof will not reveal any of your sensitive information. Our architecture will be such that payment data never leaves your device.
• Any changes to our collection, storage, usage, and sharing of your data will be reflected in an updated privacy policy and posted to relevant sites, including overdraft.com

Data We Collect

Privacy is a core value for Overdraft. We only ever collect data for the explicit purpose of improving the user experience, maintaining the codebase, and protecting our users. This primarily involves handling support requests, offering users the option to receive Telegram updates, and debugging user flows, from proof generation and smart contract difficulties to UI and browser issues.

If you reach out to us via any medium or support channel for assistance, your communications with us may remain on our servers, be it via email, Telegram, Twitter, or any other digital messaging platform.

We will not attempt to link and/or store any information that you provide us to your real-world location, identity, wallet, IP address, or any other personal information.

If you use the service as a liquidity provider and/or seller, you will need to provide payment details so that your counterparty can fulfil transfers to your account. We may store these identifiers in order to improve the UX and performance of the services, for example streamlining the payment process for your counterparty. If you are no longer an active counterparty, you can request deletion of this information by contacting us at [email protected]

How We Use Data

All data that we collect is administered and used in accordance with relevant data protection laws and our terms of service. Below is an outline of how we may use your data:

• Provision of Services: the data that we collect helps us to provide, maintain, and improve our services and their respective features.
• Support: for customers in need of our support at any stage of the flow with inquiries, concerns, suggestions etc., we will make use of any data provided to assist them with the services where possible.
• Security: data we collect may assist us to ensure the highest standards of security, from bug fixes to potential vulnerabilities, for the protection of our users and the Overdraft Protocol.
• Compliance and Safety: we may use data we collect to monitor, investigate, report, and prevent illegal or fraudulent activity and to ensure compliance with the guidance and requirements of any relevant regulatory bodies, government entities, and law enforcement officials. Applicable laws may vary from jurisdiction to jurisdiction, and so our data usage may also vary.
• Analytics: we may use anonymised, grouped data from the information available to us to help us learn more baout our services and user base, including for insights on how to improve our services and how to grow our user base.