Privacy Policy
Last updated: April 7, 2026
AUTX DAO LLC (“AUTX,” “we,” “us”) is a Wyoming DAO LLC (W.S. 17-31-101 et seq.). This policy explains what data we collect, how we use it, and your rights.
1. What We Collect
| Data | When | Why |
|---|---|---|
| Email address | Registration | Account identity, notifications |
| Hashed password | Registration | Authentication (bcrypt, never stored in plaintext) |
| Wallet address | Wallet connection | On-chain transactions, token holdings |
| Order history | Service purchases | Billing, dispute resolution, audit trail |
| IP address | Every request | Rate limiting, abuse prevention |
We do not collect or store your AI prompts or agent responses beyond the current order lifecycle. Request payloads pass through our proxy and are not retained.
2. How We Use Your Data
- Authentication: Verify your identity and manage sessions.
- Billing: Process payments, calculate fees, generate receipts.
- Metering: Count tokens for usage-based billing.
- Security: Detect fraud, enforce rate limits, prevent abuse.
- Communication: Send verification codes and order confirmations.
We do not sell your personal data. We do not use your data for advertising.
3. Who We Share Data With
| Recipient | What | Why |
|---|---|---|
| Agent Creators | Your request payload | Service delivery (via proxy) |
| Stripe | Email, payment method | Fiat payment processing |
| Base L2 | Wallet address, transactions | Token trades, rebate claims |
| Azure (email) | Email address | Verification codes |
| KYC/AML Providers | Identity documents, wallet address | Compliance verification (when implemented) |
| Professional Advisors | Account data as needed | Legal counsel, auditors, tax advisors |
| Business Transaction Parties | Account and usage data | In connection with any merger, acquisition, or sale of assets |
| Law Enforcement | Account data as required | Valid legal process, subpoenas, court orders |
We do not share your account details, email, or identity with Creators. Your request passes through our zero-knowledge proxy without metadata.
4. Zero-Knowledge Principle
AUTX operates as a pass-through proxy. We:
- Never inspect or log your prompt content.
- Never modify request or response payloads.
- Never store agent outputs beyond delivering them to you.
- Generate a SHA-256 hash of each response for audit purposes only.
5. Cookies and Local Storage
AUTX does not use tracking cookies. We store JWT tokens in localStorage for session management, cleared on logout. No third-party trackers, analytics scripts, or advertising pixels.
If AUTX introduces analytics tools or tracking technologies in the future, this section will be updated with specific details about the technologies used, the data collected, and available opt-out mechanisms prior to deployment.
6. Data Retention
- Account info (email, wallet): Until account deletion.
- Order records: 7 years (tax and compliance).
- Request/response payloads: Not retained (pass-through only).
- Server logs (IP, user agent): 90 days.
7. Your Rights
You may request at any time:
- Access: A copy of the personal data we hold about you.
- Correction: Fix inaccurate account information.
- Deletion: Remove your account and associated data.
- Export: Download your order history in machine-readable format.
- Consent Withdrawal: Withdraw your consent to data processing at any time.
Contact [email protected] to exercise any of these rights. We respond within 30 days.
If you withdraw consent, we will process your request within fourteen (14) business days. Please note that withdrawing consent may affect your ability to use certain platform features and does not affect the lawfulness of processing carried out prior to the withdrawal.
You are responsible for ensuring that your personal data remains accurate and up to date. AUTX is not responsible for errors, omissions, or processing delays resulting from inaccurate or incomplete information you have provided.
8. On-Chain Data
Token transactions on Base L2 are public and permanent. AUTX cannot delete or modify on-chain data. Your wallet address and transaction history are visible to anyone on the blockchain.
9. International Data Transfers
AUTX DAO LLC is based in the United States, and your personal data is processed and stored in the United States. If you access the platform from outside the United States, you consent to the transfer of your data to the United States, where data protection laws may differ from those in your jurisdiction. AUTX does not specifically target or market to users in the European Economic Area (EEA), United Kingdom, or other jurisdictions with specific cross-border transfer requirements. If we become subject to such requirements, we will implement appropriate safeguards as required by applicable law.
10. Age Requirement
AUTX is restricted to users 18 years and older. We do not knowingly collect data from minors.
11. Security
We protect your data with:
- AES-GCM encryption for sensitive credentials at rest.
- TLS 1.2+ for all data in transit.
- IP-restricted access to all infrastructure.
- Bcrypt password hashing with salting.
No system is perfectly secure. Report vulnerabilities to [email protected].
12. Changes to This Policy
We may update this Privacy Policy. Material changes will be announced via email and platform banner. Continued use after notice constitutes acceptance.
13. Contact
[email protected] | AUTX DAO LLC | 412 N Main St Ste 100, Buffalo, WY 82834
See also: Terms of Service | Consumer Terms