Darkfibre – Privacy Policy

Last updated: [6.2.2026]

This Privacy Policy explains how Darkfibre (“Darkfibre”, “we”, “us” or “our”) collects, uses and protects information in connection with our execution and data infrastructure for the ecosystem (the “Interface”).

We aim to collect as little personal data as reasonably possible. We do not use email-based accounts and we do not use cookies or similar tracking technologies on the Interface at this time.

By accessing or using the Interface, you agree to this Privacy Policy. If you do not agree, you must not use the Interface.

1. Who We Are

Darkfibre is an online, non-custodial execution and data infrastructure layer for Solana. For the purposes of this Privacy Policy, Darkfibre is the entity that determines how and why your information is processed in connection with the Interface.

If you have any questions about this Privacy Policy, you can contact us at:

2. What Information We Collect

We collect information in three main categories:

2.1 Wallet and On-Chain Information

When you interact with the Interface, you typically connect a Solana wallet and sign messages or transactions using your own wallet software.

We may process:

  • Public wallet addresses (e.g. your Solana public key);
  • Transaction hashes and signatures submitted through the Interface;
  • Token mints, pools, and programs you interact with using our API;
  • On-chain events and results related to transactions routed through Darkfibre.

Important: We never request or store your private keys, seed phrases, or wallet passwords. Signing always happens on your side.

2.2 API and Usage Logs

When you use our APIs or SDKs, we automatically collect technical and usage information, for example:

  • IP address and approximate location (derived from IP, at a coarse level);
  • HTTP request metadata (URLs, endpoints, request method, response status);
  • Timestamps of requests and responses;
  • User-agent (e.g., your library, runtime, or browser information);
  • Error messages, performance metrics and debug logs generated by our systems;
  • Features used (e.g., data streaming, transaction building, submission).

The exact contents of the request may also include:

  • Parameters you send to us (e.g., what token to trade, size, slippage, priority level);
  • References to wallets, mints, or markets involved in the operation.

We strongly recommend that you do not send any secrets (e.g., private keys, seed phrases) to our endpoints. Our documentation is designed so you should never need to.

2.3 Basic Website Logs

If you browse our documentation or landing page, we may collect minimal server logs for security and operational purposes, such as:

  • IP address;
  • User-agent;
  • Timestamp;
  • Pages visited and basic referrer information.

We do not use cookies or similar tracking technologies (such as local storage, fingerprinting, or third-party trackers) at this time.

If this changes in the future, we will update this Privacy Policy and explain what is used and why.

3. How We Use the Information

We use the information we collect for the following purposes:

  1. To provide and operate the Interface

    • Routing and processing your API requests;
    • Building and submitting transactions as requested by you;
    • Returning results, including trade outcomes and error codes.

  2. To maintain security and prevent abuse

    • Detecting and mitigating abuse, spam, DDoS, and malicious behavior;
    • Identifying suspicious patterns, misuse of API keys, or violations of our Terms of Service.

  3. To monitor performance and improve the Interface

    • Measuring latency, success rates, and error rates;
    • Understanding which features are used and how they perform;
    • Debugging issues and improving reliability and speed.

  4. To comply with legal obligations

    • Responding to lawful requests from regulators or authorities (where applicable);
    • Enforcing our Terms of Service and other policies.

We do not sell your personal data to third parties.

We may use aggregated, anonymized information (that does not identify you personally) for analytics, product improvement, or high-level statistics.

Where data protection laws require a legal basis (for example, in the EU/EEA), we rely on:

  • Performance of a contract – to provide the Interface and APIs you choose to use;
  • Legitimate interests – such as securing the Interface, preventing abuse, measuring performance, and improving our services;
  • Compliance with legal obligations – where we are required to retain or share information under applicable law.

5. How We Share Information

We may share information in the following limited circumstances:

  1. Service providers and infrastructure

    • With third-party infrastructure providers (e.g., hosting, networking, logging, RPC providers) that help us operate the Interface.
    • These providers process data on our instructions and are not allowed to use it for their own purposes.

  2. Legal and regulatory

    • If we are required to do so by law, regulation, court order, or government request;
    • To protect our rights, property, or safety, or that of our users or others;
    • To enforce our Terms of Service.

  3. Business transfers

    • In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will use reasonable efforts to ensure the recipient honors this Privacy Policy or a similar policy.

We do not share information with third parties for their own marketing purposes.

6. Data Retention

We retain information only for as long as necessary to fulfill the purposes described in this Privacy Policy, including:

  • Operating the Interface and providing APIs;
  • Securing and maintaining our systems;
  • Complying with legal obligations and resolving disputes.

Retention periods may vary depending on the type of data and context, but in general:

  • Technical logs (IP, user-agent, request metadata) are kept for a limited period sufficient for security, debugging, and analytics;
  • Aggregated or anonymized data may be retained for a longer period, as it no longer identifies you.

We may delete or anonymize data earlier if it is no longer needed.

7. Data Security

We take reasonable technical and organizational measures to protect the information we process, including:

  • Access controls and authentication for internal systems;
  • Network-level security measures and monitoring;
  • Limiting access to logs and production systems to authorized personnel only.

However, no system is completely secure. You are responsible for:

  • Protecting your own devices, systems, and wallets;
  • Keeping your private keys and seed phrases secret;
  • Using best practices for API key storage and handling.

If you believe you have discovered a security issue involving Darkfibre, please contact us at [darkfibredev@proton.me].

8. International Transfers

Because Darkfibre is an online, globally accessible service, information may be processed and stored in multiple countries or regions.

By using the Interface, you acknowledge that your information may be transferred to and processed in jurisdictions other than your own, where data protection laws may differ. We take reasonable steps to protect your information in accordance with this Privacy Policy, regardless of where it is processed.

9. Your Rights and Choices

Depending on your location and applicable law, you may have some or all of the following rights regarding your personal data:

  • Access – to request confirmation whether we process your personal data and to receive a copy;
  • Rectification – to request correction of inaccurate or incomplete data;
  • Deletion – to request deletion of your personal data, subject to legal and technical constraints;
  • Restriction – to request restriction of processing in certain circumstances;
  • Objection – to object to certain types of processing, particularly where we rely on legitimate interests;
  • Portability – to request a copy of your data in a structured, commonly used format where technically feasible.

Because we do not run email-based accounts and rely primarily on wallet-level identifiers, exercising these rights may require you to prove control over the relevant wallet or provide other technical proof of identity.

To exercise your rights (where applicable), you can contact us at [darkfibredev@proton.me]. We may ask you for additional information to verify your identity before responding.

You also have the right to lodge a complaint with your local data protection authority, if you believe your rights have been violated.

The Interface may interact with or reference third-party services, including wallets, RPC providers, block explorers, protocols, or other websites.

This Privacy Policy does not apply to those third-party services. Their own privacy policies and practices will govern how they handle your information.

You are responsible for reviewing the privacy policies of any third-party services you choose to use.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

If we make material changes, we will update the “Last updated” date at the top of this page. In some cases, we may provide additional notice (for example, a notice on our website or in our documentation).

By continuing to use the Interface after an updated Privacy Policy becomes effective, you agree to the updated policy. If you do not agree, you must stop using the Interface.

12. Contact

If you have any questions or concerns about this Privacy Policy or how we process information, you can contact us at: