Legal

Privacy Policy

How we collect, use, and protect your information.

1 Introduction

This Privacy Policy describes how Dynamix ("we," "us," "our") collects, uses, stores, and protects information when you use our platform, including the website, dashboard, trading bot, and all related services (collectively, the "Service").

By using the Service, you consent to the data practices described in this Privacy Policy. If you do not agree with this policy, please do not use the Service.

2 Information We Collect

We collect limited information necessary to operate the Service. We are committed to minimizing data collection to only what is essential.

Data Type What We Collect Purpose
Email Address Provided during plan purchase API key delivery, plan notifications, account identification
API Key Generated upon purchase Authentication, session management
Wallet Public Keys Generated or imported by you Wallet identification, balance display, trade execution
Wallet Private Keys Generated or imported by you Transaction signing (encrypted at rest via AWS KMS)
Trading Parameters Configured by you in the dashboard Bot operation (entry mode, TP/SL, fees, filters)
Transaction History Recorded from bot activity Activity display, trade tracking (auto-deleted after 30 days)
Payment Records SOL transaction details Plan activation, payment verification

We do not collect:

  • Your real name, physical address, or phone number
  • Government-issued identification documents
  • Browsing history or cookies for advertising purposes
  • Social media profiles or third-party account credentials

3 How We Use Your Information

The information we collect is used strictly for operating and improving the Service:

  • Service operation: Authenticate your sessions, execute trades on your behalf, manage wallets, and store your trading configuration
  • Communication: Send your API key via email, notify you of plan activation or expiration, and deliver key rotation confirmations
  • Payment processing: Verify SOL deposits, activate and extend plans, and maintain payment records
  • Service improvement: Analyze aggregate usage patterns (not individual user data) to improve performance and reliability
  • Security: Detect and prevent unauthorized access, fraud, and abuse of the Service

We do not sell, rent, or share your personal information with third parties for marketing or advertising purposes.

4 Private Key Security

We take the security of your wallet private keys extremely seriously. Here is how your keys are protected:

  • Encryption at rest: All wallet private keys are encrypted using AWS Key Management Service (KMS) before being stored in our database. The raw private key is never stored in plaintext.
  • Server-side decryption only: Private keys are decrypted only in server memory for the purpose of signing transactions. Decrypted keys are never written to disk or logs.
  • No client-side storage: Your private keys are never sent to or stored in your browser's localStorage, sessionStorage, or cookies.
  • On-demand access: When you use the "Show Private Key" feature, the key is decrypted momentarily and sent over an encrypted HTTPS connection to your browser for display only.

While we implement industry-standard encryption practices, no system is 100% secure. We strongly recommend maintaining your own secure backups of wallet private keys outside of Dynamix.

5 Data Storage & Retention

  • Database: User data is stored in a database hosted on secured infrastructure
  • Transaction history: Trade records are automatically deleted after 30 days. This is an automated daily process.
  • Payment records: Deposit and payment verification records are retained for the duration of your subscription and for a reasonable period after for dispute resolution
  • Account data: Email, API key hash, wallet data, and trading parameters are retained as long as your account is active
  • Post-termination: Upon account termination or expiration, your data may be retained for up to 90 days before permanent deletion to allow for potential reactivation or dispute resolution

6 Third-Party Services

Dynamix integrates with the following third-party services to operate. Each service may process limited data as described:

  • AWS Key Management Service (KMS): Handles encryption and decryption of wallet private keys. AWS processes encrypted key material only.
  • Solana Blockchain: Wallet addresses and transaction data are publicly visible on the Solana blockchain. This is inherent to blockchain technology and cannot be restricted by us.
  • SMTP Email Provider: Your email address is processed by our SMTP provider for delivering API keys and notifications.
  • CoinGecko API: We fetch SOL/USD price data. No personal user data is shared with CoinGecko.
  • Yellowstone gRPC / 0slot / Jito: These infrastructure services process transaction data for blockchain streaming, order execution, and MEV protection. They do not receive any personal user information.

We do not share your email, API key, or private key data with any third party beyond the services listed above and only to the extent necessary for the Service to function.

7 Blockchain Data Transparency

It is important to understand that certain data processed by Dynamix becomes part of the public Solana blockchain record:

  • Wallet addresses: Your Solana wallet public addresses are publicly visible on the blockchain
  • Transactions: All buy and sell transactions executed by the bot are recorded on-chain and are publicly viewable via blockchain explorers
  • Token interactions: The tokens your wallet interacts with are part of the public transaction record

This transparency is a fundamental property of blockchain technology and is outside our ability to modify or restrict. You should be aware that your trading activity, while not linked to your personal identity through our Service, is publicly traceable through your wallet address.

8 Security Measures

We implement multiple layers of security to protect your data:

  • Encryption in transit: All communication between your browser and our servers uses HTTPS/TLS encryption
  • Encryption at rest: Wallet private keys are encrypted with AWS KMS. Database connections use encrypted channels.
  • JWT authentication: API key validation uses signed JSON Web Tokens with expiration controls
  • Server-side validation: All user inputs and trading parameters are validated server-side before processing
  • Isolated sessions: Each user's SSE stream, trading bot instance, and data are isolated from other users via DashMap-based concurrent access control
  • No logging of secrets: Private keys, API keys, and other sensitive values are excluded from application logs

Despite our best efforts, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security but are committed to maintaining industry-standard protections.

9 Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data, subject to legal or operational retention requirements
  • Export: Request your data in a portable, machine-readable format
  • Objection: Object to processing of your data for specific purposes
  • Key rotation: Regenerate your API key at any time through the Settings page, immediately invalidating the previous key
  • Wallet deletion: Remove wallets from your account at any time through the dashboard interface

To exercise any of these rights, please contact us through our official Discord channel. We will respond to valid requests within a reasonable timeframe.

10 Cookies & Tracking

Dynamix uses minimal browser storage:

  • Session storage: Used during the payment flow to temporarily hold purchase session data. This data is automatically cleared when you close the browser tab.
  • Local storage: Used to persist your JWT session token for authentication continuity across page reloads.

We do not use:

  • Third-party tracking cookies
  • Analytics services that track individual users (Google Analytics, etc.)
  • Advertising pixels or retargeting tags
  • Fingerprinting or device identification technologies

11 Children's Privacy

Dynamix is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from anyone under 18 years of age. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

12 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the policy on this page. Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.

We encourage you to review this page periodically to stay informed about how we protect your information.

13 Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out to us: