Early access applications are open. The first 10 startups approved to launch on Xapitol pay zero protocol fees. Apply Here →
XAPITOL

Xapitol Protocol: Privacy Policy

Last Updated: 04/06/2026

1. Information We Collect

Identity Information (XloudID): To comply with global AML/KYC regulations, we collect verifiable personal and corporate information, including legal name, government-issued ID, date of birth, biometric verification data, and corporate incorporation documents.

Wallet & On-Chain Data: We collect the public Solana wallet addresses connected to the Protocol.

Usage & Device Data: We collect standard web analytics, including IP addresses, browser types, interaction with the Pulse feed, and preferences for platform intelligence alerts.

2. How We Use Your Information

Compliance & Security: To verify identities, prevent fraud, and comply with Anti-Money Laundering (AML) laws.

Platform Operation: To facilitate access to the Creator Studio, the Market Terminal, and the Xapitol Connect API.

Communication: To deliver requested ecosystem notifications, Pulse updates, and security alerts.

3. The Reality of Public Blockchains (Important Disclaimer)

Immutable Public Ledger: Users must understand that all transactions executed via the Xapitol smart contracts (acquiring or relinquishing Keys, transferring tokens) are permanently and immutably recorded on the public Solana blockchain.

Separation of Data: While your XloudID (PII) is stored securely off-chain by us and our verification partners, your wallet address and its transaction history are public by the nature of the blockchain.

4. How We Share Your Information

Identity Partners: We share necessary data with our accredited third-party KYC/KYB providers solely for the purpose of identity verification.

Legal & Regulatory Requests: We will disclose information if required by a valid subpoena, court order, or regulatory inquiry to protect the integrity of the platform.

No Selling of Data: Xapitol does not sell user data or XloudID profiles to third-party marketers.

5. Data Security

We implement institutional-grade security measures, including encryption and strict access controls, to protect off-chain personal data. However, no digital transmission is 100% secure.

6. User Rights & Data Retention

Users may request access to, correction of, or deletion of their off-chain personal data, subject to regulatory retention requirements (e.g., AML laws often require keeping KYC records for several years even after an account is closed).

Users acknowledge that Xapitol cannot delete or alter data recorded on the public Solana blockchain.