AllIn Wallet is a fully non-custodial application. We have zero access to your private keys, seed phrases, passwords, PINs, or funds. All sensitive data stays on your device.
What We Do NOT Collect
- Private keys and seed phrases — never transmitted, never stored on any server
- Passwords and PINs — hashed locally with bcrypt, stored only in the device's secure keychain/keystore
- Transaction history — stored locally on your device only
- Wallet addresses — stored locally, never sent to our servers
- Personal information — no name, email, phone, or identity data collected
- Analytics or tracking — no analytics SDKs, no crash reporting to our servers
Third-Party Services
AllIn Wallet communicates with the following third-party services for functionality:
- Blockchain RPC endpoints (Ethereum, Solana, Bitcoin, etc.) — to fetch balances and broadcast transactions. Your wallet address is visible to these providers as part of standard blockchain operations.
- CoinGecko API — to fetch real-time prices. No personal data is sent.
- Li.Fi API — for cross-chain swap quotes and routing. Wallet addresses are sent as part of quote requests.
- THORChain API — for BTC/DOGE/XRP swap quotes. Wallet addresses are sent as part of quote requests.
- WalletConnect — for dApp connectivity. Session data is managed by WalletConnect's relay servers.
- Mempool.space / Blockcypher — for Bitcoin/Dogecoin UTXO and fee data.
None of these services receive your private keys, seed phrases, passwords, or PINs. Only public wallet addresses and unsigned transaction data are shared as required for blockchain operations.
On-Device Security
- Seed phrases encrypted and stored in expo-secure-store (iOS Keychain / Android Keystore)
- Passwords hashed with bcrypt (12 rounds)
- PINs hashed with bcrypt (10 rounds)
- Private keys derived in memory only and zero-filled immediately after use
- Biometric authentication (Face ID / fingerprint) available as additional protection
- Automatic session lock after 15 minutes of inactivity
- Exponential lockout after failed authentication attempts
Solana Seed Vault
On Solana Seeker and Saga devices, AllIn Wallet can connect to the phone's hardware Seed Vault. In this mode, your private key never leaves the secure element — not even the app can access it. Only public keys and signed transactions are exchanged.
Contact
For privacy questions: bpupadhyaya@equalinformation.com
Last updated: April 2026