Privacy Policy — Open Wallet

1 Who We Are

Open Wallet is provided by EqualInformation, LLC as free, open-source software under the MIT License.

Source code: github.com/bpupadhyaya/crypto
Privacy contact: bpupadhyaya@equalinformation.com
Website: bpupadhyaya.github.io

2 Scope

This Privacy Policy applies to the Open Wallet mobile application (iOS and Android), the associated Open Chain blockchain, and the Open Token (OTK) ecosystem. It covers the software distributed under the package name com.equalinformation.openwallet and related web pages linking to this policy.

3 Open Source & User Sovereignty

Open Wallet is distributed as open-source software under the MIT License. Key principles:

• You choose to install. Installation is entirely voluntary. No one is compelled to use this software.
• You own the installed software. Once installed on your device, the software is under your complete control.
• You own your keys. Private keys, seed phrases, and wallet credentials are generated on your device and never leave it. The developer has no access to them.
• You control all transactions. The developer does not initiate, authorize, approve, intermediate, or execute any transaction on your behalf. Every action is taken solely by you.
• No fees are charged by the developer. The software itself charges no fees. Any transaction fees, gas fees, or network fees are imposed by the respective blockchain networks you interact with, not by EqualInformation, LLC.
• No custody. EqualInformation, LLC never has custody, possession, or control over your digital assets, fiat currency, tokens, or funds at any time.

4 Information Open Wallet May Access or Store on Your Device

Open Wallet is designed as a local-first, self-custodial application. The following information may be stored exclusively on your device:

• Encrypted wallet vault (seed phrase encrypted with AES-256-GCM, stored in OS Keychain)
• Derived blockchain addresses for supported chains (Bitcoin, Ethereum, Solana, Open Chain, Cosmos)
• PIN hash and biometric authentication preferences
• App settings (theme, language, currency, network mode)
• Enabled token list, price alert configurations, and address book contacts
• Universal ID registration data (if registered on Open Chain)

None of this information is transmitted to EqualInformation, LLC servers. The developer does not operate backend servers that receive or store user data from Open Wallet.

5 Information Transmitted to Third-Party Networks

When you use Open Wallet to interact with blockchain networks, your device connects directly to those networks. The following information may be transmitted:

• Blockchain RPCs: Your public blockchain address and transaction data are sent to public RPC endpoints (e.g., mempool.space for Bitcoin, Sepolia/Ethereum RPC nodes, Solana RPC, Open Chain nodes) to query balances, broadcast transactions, and fetch history.
• Price data: Token price queries are sent to CoinGecko's public API. No personal information is included in these requests.
• Fiat on/off ramp providers: If you choose to buy or sell crypto, you will be redirected to third-party providers (MoonPay, Transak, Ramp). Those providers operate under their own privacy policies and may collect personal information for KYC/AML compliance.
• WalletConnect: If you connect to dApps via WalletConnect, your public address and transaction requests are shared with the connected dApp according to the WalletConnect protocol.

EqualInformation, LLC does not control, operate, or intermediate these third-party services.

6 What We Do NOT Collect or Access

EqualInformation, LLC does not:

• Collect, store, or access your private keys, seed phrases, or wallet passwords
• Track your transactions, balances, or blockchain activity
• Collect your name, email, phone number, IP address, or device identifiers
• Sell, share, or monetize any user data
• Operate analytics, advertising, or tracking SDKs within the app
• Have the ability to freeze, seize, reverse, or modify your transactions or assets
• Act as a money transmitter, exchange, custodian, broker, or financial intermediary

7 Biometric Data

Open Wallet may use your device's biometric sensors (Face ID, Touch ID, fingerprint) for authentication. Biometric processing occurs entirely on your device using the operating system's secure enclave. No biometric data is ever transmitted, stored externally, or accessible to EqualInformation, LLC.

If you register a Universal ID on Open Chain, only a cryptographic hash of the biometric proof is stored on-chain. The biometric data itself remains on your device.

8 Encryption & Security

Open Wallet employs the following security measures:

• AES-256-GCM encryption for the wallet vault
• PBKDF2-SHA256 key derivation (with planned migration to Argon2id)
• OS Keychain / Secure Store for encrypted vault storage (hardware-backed on supported devices)
• 6-digit PIN with lockout after 5 failed attempts
• Post-quantum cryptography ready (vault architecture supports PQC migration)
• All cryptographic libraries are audited, open-source implementations (@noble/hashes, @noble/ciphers, @scure/bip32, @scure/bip39)

Despite these measures, no method of electronic storage or transmission is 100% secure. Users are responsible for safeguarding their seed phrases and credentials.

9 In-App Purchases

Open Wallet may offer optional in-app purchases through Apple App Store or Google Play Store for premium software features. These purchases are processed by Apple/Google under their respective terms and privacy policies. EqualInformation, LLC does not receive your payment card information. In-app purchases are for software features only and do not constitute the purchase of any digital asset, cryptocurrency, or financial product.

10 Permissions

Open Wallet may request the following device permissions:

• Camera: For QR code scanning (address capture). Images are processed locally and not stored or transmitted.
• Biometrics: For secure authentication (Face ID, fingerprint). Processed on-device only.
• Notifications: For transaction confirmations, price alerts, and staking rewards. All notifications are generated locally.
• Network: For connecting to blockchain RPCs and price APIs.

Open Wallet does not require SMS, Call Log, Contacts, Location, or Microphone permissions.

11 Data Retention & Deletion

All data stored by Open Wallet resides on your device. To delete all app data:

• Clear app storage via your device's Settings
• Uninstall the application

Blockchain transactions, once broadcast and confirmed, are permanently recorded on the respective blockchain and cannot be deleted by anyone, including EqualInformation, LLC. This is an inherent property of blockchain technology.

12 Children

Open Wallet is not directed at children under 18. The app does not knowingly collect personal information from children. Universal ID registration for minors requires a guardian, as described in the Human Constitution, Article II.

13 Regulatory Compliance & Jurisdictional Notices

Open Wallet is a self-custodial software tool distributed as open-source software. It is not a money services business, money transmitter, exchange, custodian, broker-dealer, investment advisor, or financial institution. The developer does not hold, transmit, exchange, or custody user funds.

13.1 United States

Open Wallet is a non-custodial software wallet. Under current U.S. regulatory guidance:

• The developer does not meet the definition of a “money transmitter” under FinCEN guidance (FIN-2019-G001), as the software does not accept or transmit value on behalf of users.
• Open Wallet does not constitute a “broker” under the Infrastructure Investment and Jobs Act provisions, as it does not effectuate transfers of digital assets on behalf of others.
• Users are solely responsible for complying with applicable federal and state tax obligations, including IRS reporting requirements for cryptocurrency transactions.
• Users in states with specific cryptocurrency regulations (e.g., New York BitLicense, state money transmitter laws) should verify that their use of self-custodial wallets complies with local law.
• The SEC, CFTC, and other regulators may issue new guidance. Users should stay informed of evolving U.S. crypto regulations.

13.2 European Union

Under the EU Markets in Crypto-Assets (MiCA) Regulation (Regulation 2023/1114), non-custodial software wallets that do not provide custodial or exchange services are not classified as crypto-asset service providers (CASPs). Users in the EU should consult local implementation of MiCA for any additional requirements.

13.3 United Kingdom

Under the UK Financial Conduct Authority (FCA) framework, self-custodial wallets that do not provide exchange or custodial services are generally not subject to FCA registration. Users should consult FCA cryptoasset guidance for current requirements.

13.4 India

Cryptocurrency regulations in India are governed by the Reserve Bank of India (RBI) and the Ministry of Finance. Users should be aware of applicable tax requirements (30% tax on crypto income under Finance Act 2022) and any current regulatory directives. See rbi.org.in for current guidance.

13.5 Japan

Japan's Financial Services Agency (FSA) regulates crypto-asset exchanges under the Payment Services Act. Non-custodial wallet software is generally not subject to exchange registration. See fsa.go.jp.

13.6 Singapore

The Monetary Authority of Singapore (MAS) regulates Digital Payment Token Services under the Payment Services Act 2019. Non-custodial wallet providers are generally not required to hold a license. See MAS Payment Services Act.

13.7 Australia

AUSTRAC regulates digital currency exchange providers. Non-custodial wallets are generally not required to register. See AUSTRAC digital currency guidance.

13.8 Other Jurisdictions

Cryptocurrency regulations vary significantly by country and are evolving rapidly. Users are solely responsible for understanding and complying with the laws and regulations applicable in their jurisdiction. EqualInformation, LLC makes no representation that the software complies with the laws of any specific jurisdiction. If the use of self-custodial cryptocurrency wallets is prohibited or restricted in your jurisdiction, you should not install or use this software.

For a global overview of cryptocurrency regulations, see: Library of Congress — Cryptocurrency World Survey

14 Disclaimers & Limitation of Liability

THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT. IN NO EVENT SHALL EQUALINFORMATION, LLC OR ITS CONTRIBUTORS BE LIABLE FOR ANY CLAIM, DAMAGES, OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT, OR OTHERWISE, ARISING FROM, OUT OF, OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

Specifically:

• EqualInformation, LLC is not responsible for any loss of funds, tokens, or digital assets resulting from the use of this software.
• The developer cannot recover lost private keys, seed phrases, or passwords.
• The developer is not liable for any losses resulting from blockchain network failures, smart contract bugs, bridge exploits, or third-party service failures.
• The developer does not provide financial, investment, tax, or legal advice.
• Use of this software does not create any fiduciary, advisory, agency, or client relationship between the user and EqualInformation, LLC.
• Users interact with blockchain networks at their own risk. Cryptocurrency values are volatile and may result in total loss of value.

15 Open Source License

Open Wallet is released under the MIT License. The full text is available in the source repository. Anyone may inspect, audit, modify, and redistribute the software under the terms of this license.

16 Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will post the updated version on this page and revise the Effective Date above. Continued use of the software after changes constitutes acceptance of the updated policy.

17 Contact

EqualInformation, LLC
Privacy Contact: bpupadhyaya@equalinformation.com
Source Code: github.com/bpupadhyaya/crypto
Website: bpupadhyaya.github.io