Sovra Privacy Policy

1. Information We Collect

We collect information necessary to operate Sovra's services, comply with legal obligations, and maintain platform integrity. We may collect the following categories of information when you use Sovra:

Personal Information You Provide

• Name, email address, phone number.
• Government-issued ID and related KYC details, provided through our third-party verification partners.
• Biometric data used for authentication (e.g., fingerprint or face ID).

Transaction Information

• Wallet addresses created through our app.
• Records of deposits, withdrawals, and yield-related transactions.
• Metadata such as timestamps and transaction values.

Technical Information

• Device identifiers, IP address, operating system, and basic app diagnostics.
• App performance, crash logs, and usage metrics.
• Optional analytics (if enabled in the future) to improve user experience.

Communications

• Messages or attachments you send to Sovra via support, feedback, or in-app requests.

Third-Party Data Sources

• Information received from third-party service providers (e.g., payment processors, KYC vendors) as necessary to facilitate your use of Sovra's services.

2. How We Use Information

We use the information collected to:

• Operate and provide Sovra's self-custody savings services.
• Comply with legal and regulatory requirements, including KYC/AML.
• Conduct identity verification, fraud prevention, and AML/KYC compliance.
• Facilitate transactions between fiat and stablecoins.
• Detect and prevent fraud, abuse, or security threats.
• Communicate important service updates and required notices.

We do not use your information for third-party advertising.

3. How We Share Information

We never sell your personal information. Sovra may share information only in limited cases:

• Service Providers: With trusted vendors for identity verification, payments, and secure hosting.
• Third party integration: Certain Sovra Services may include access to or redirection to partner platforms (including Unlimit, Binance Connect, and Moonpay). Sovra does not control or operate these partners' systems and disclaims all liability for their use.
• Regulators/Authorities: Where required by applicable law or to comply with AML/sanctions obligations.
• Corporate Events: In the case of a merger, acquisition, or restructuring.
• With Your Consent: Where you explicitly authorize sharing (e.g., through optional integrations or marketing opt-ins).

4. Data Retention

We retain personal information only for as long as needed to fulfill the purposes described in this Policy or as required by law.

• Certain regulatory records (e.g., KYC/AML) may be retained even after account closure, as required by law.
• Otherwise, you may request deletion of your account and personal data at any time (see Section 6).

5. Security

We apply strict technical and organizational safeguards to protect your data, including:

• End-to-End Encryption: Only you can authorize transactions from your wallet.
• Multi-Party Computation (MPC) Technology: Ensures Sovra never holds your private keys and self-custody protection.
• Multi-Factor Authentication: Adds extra protection to account access.
• AWS Secure Hosting: Data is stored on secure servers with industry-standard protections.

While no system is completely immune to risks, Sovra continuously reviews and enhances its data security practices.

6. Your Rights

You may exercise the following rights, subject to legal limitations:

• Access: Request a copy of the information we hold about you.
• Correction: Request corrections of inaccurate or incomplete data.
• Deletion: Request deletion of your account and associated personal data, subject to legal exceptions.
• Restriction/Objection: Limit or object to certain processing.
• Data Portability: Receive a copy of your data in a structured format.
• Withdrawal of Consent: Where processing is based on consent, you may withdraw it at any time.

To exercise your rights, contact us at support@sovra.finance. We may require verification of your identity before processing your request.

7. International Data Transfers

Sovra may process and store data in the United States or other jurisdictions. When transferring data internationally, we apply safeguards to protect your information consistent with global standards.

8. Cookies and Analytics

Sovra may use cookies, SDKs, or similar technologies (if enabled in the future) to:

• Maintain session security;
• Measure usage and performance;
• Improve functionality and stability.

You may manage cookie preferences through your browser or device settings.

9. Children's Privacy

Sovra is not directed to anyone under 18. We do not knowingly collect personal data from children.

10. Updates to This Policy

We may update this Privacy Policy periodically as our services or applicable laws evolve. Material updates will be communicated via email, in-app notice, or through our website. Continued use of Sovra after changes take effect constitutes acceptance of the updated Policy.

11. Contact Us