Privacy Policy

Last updated: 11/30/2025

1. Introduction

PoolShark.dev ("we", "our", or "the Service") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

2.1 Account Information

We collect information you provide when creating an account:

  • Email address
  • Password (encrypted and hashed)
  • Account preferences

2.2 Position Data

We store information about your Uniswap liquidity positions:

  • Position URLs
  • Token pairs and amounts
  • Position values and metrics
  • Historical position data

2.3 API Keys and Credentials

Important: We collect and store API keys for third-party services (Coinbase, Google Sheets) that you choose to connect. These are:

  • Encrypted at rest using industry-standard encryption
  • Only decrypted when needed for API calls
  • Never shared with third parties except the service provider (e.g., Coinbase)
  • Stored securely in our database

2.4 Usage Data

We automatically collect certain information about your use of the Service:

  • Feature usage and interactions
  • Error logs and diagnostics
  • Performance metrics

2.5 Payment Information

Payment processing is handled by Stripe. We do not store your full payment card details. We only receive:

  • Subscription status
  • Billing email
  • Payment history

3. How We Use Your Information

We use the collected information to:

  • Provide and maintain the Service
  • Process your transactions and manage subscriptions
  • Send you service-related communications
  • Monitor and analyze usage patterns
  • Detect, prevent, and address technical issues
  • Improve the Service and develop new features
  • Comply with legal obligations

4. Data Storage and Security

4.1 Data Storage

Your data is stored using:

  • Supabase: Authentication and database storage (hosted on secure cloud infrastructure)
  • Encryption: Sensitive data (API keys) is encrypted using AES-256 encryption
  • Access Controls: Row-level security ensures users can only access their own data

4.2 Security Measures

We implement security measures including:

  • Encryption of sensitive data in transit (HTTPS/TLS)
  • Encryption of sensitive data at rest
  • Regular security audits and updates
  • Access controls and authentication
  • Secure API key management

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

5.1 Service Providers

  • Supabase: Authentication and database hosting
  • Stripe: Payment processing
  • Vercel/Railway: Application hosting
  • Sentry: Error tracking and monitoring

5.2 Third-Party API Integrations

When you connect third-party services (Coinbase, Google Sheets), we transmit data to those services as necessary to provide functionality. This is governed by their respective privacy policies.

5.3 Legal Requirements

We may disclose your information if required by law or in response to valid legal requests.

6. Your Rights and Choices

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update or correct your information through account settings
  • Deletion: Delete your account and associated data
  • Export: Export your position data
  • Disconnect: Remove API key connections at any time

To exercise these rights, contact us through your account settings or use the features provided in the Service.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. When you delete your account:

  • Your account information is deleted
  • Your position data is deleted
  • Your API keys are permanently deleted
  • Some data may be retained in backups for a limited period

8. Cookies and Tracking

We use minimal cookies for authentication and session management. We do not use third-party advertising cookies or tracking pixels.

9. Children's Privacy

The Service is not intended for users under the age of 18. We do not knowingly collect personal information from children.

10. International Data Transfers

Your data may be processed and stored in servers located outside your country of residence. By using the Service, you consent to such transfers.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us through your account settings or the support channels provided in the Service.