← Back to RiskState

Privacy Policy

Version 1.0 — Effective March 17, 2026

1. Introduction

Digital Venture Asset LLC ("Company," "we," "us," or "our") operates the RiskState API and the website at riskstate.ai. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

2. Information We Collect

2.1 Information You Provide

  • Waitlist registration: Email address and use case selection when you request API access
  • Account information: Email address associated with your API key
  • Support communications: Any information you provide when contacting us

2.2 Information Collected Through API Usage

  • API request metadata: Timestamp, requested asset (BTC/ETH), IP address, and request headers
  • Wallet addresses: If you provide a wallet address in API requests for DeFi position lookups. We use this solely to query on-chain data from public blockchain explorers. We do not store wallet addresses beyond the duration of the API request.
  • Usage patterns: Request frequency, error rates, and feature usage for service improvement

2.3 Information We Do NOT Collect

  • Private keys or seed phrases
  • Trading history or portfolio balances (beyond single-request DeFi lookups)
  • Personal identity documents or KYC information
  • Cookies for advertising or cross-site tracking

3. How We Use Your Information

  • To provide, maintain, and improve the Service
  • To issue and manage API keys
  • To communicate with you about service updates, security notices, or changes to these terms
  • To monitor for abuse, enforce rate limits, and ensure service integrity
  • To generate aggregate, anonymized usage statistics

We do not sell your personal information. We do not use your data for advertising. We do not share individual API request data with third parties.

4. Data Storage and Security

Waitlist submissions are stored via Netlify Forms on servers located in the United States. API request logs are retained for up to 30 days for operational purposes, then deleted. API keys are stored as hashed values; we cannot retrieve your key after issuance.

We implement reasonable administrative, technical, and physical safeguards to protect your information. However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

5. Third-Party Services

The Service relies on third-party data providers to function. These providers receive API requests from our servers, not from your device. Third-party providers include:

  • Netlify: Hosting, serverless functions, form submissions
  • Alchemy: Blockchain RPC calls for DeFi position data
  • Anthropic: AI analysis (receives anonymized market data, not user data)
  • Market data providers: CoinGecko, CoinGlass, Binance, FRED (receive only market data queries, no user data)

We do not send your email, name, or personal information to any data provider. Wallet addresses, when provided, are sent only to Alchemy for on-chain queries.

6. Data Retention

  • Waitlist emails: Retained until you request removal or the waitlist is closed
  • API keys: Active until revoked by you or by us
  • API request logs: 30 days
  • Cached API responses: 60 seconds (TTL)

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing of your data for specific purposes
  • Revocation: Request revocation of your API key at any time

To exercise any of these rights, contact us at privacy@riskstate.ai. We will respond within 30 days.

8. International Users

The Service is operated from the United States. If you access the Service from the European Union, United Kingdom, or other jurisdictions with data protection laws, you acknowledge that your data will be transferred to and processed in the United States. We process data under the legal basis of legitimate interest (providing the Service you requested) and consent (waitlist registration).

9. Children

The Service is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Material changes will be communicated via email to registered users.

11. Contact

For privacy-related questions or requests, contact us at: privacy@riskstate.ai

Digital Venture Asset LLC
Delaware, United States