Privacy Policy

1. Who We Are

Hilt Technologies Ltd (“Hilt”) is the controller of personal data processed through hilt.so, the HiltPay app, public checkouts, merchant support flows, and related services. For privacy enquiries, contact privacy@hilt.so.

2. Data We Collect

Depending on how you use Hilt, we may process:

• account information such as name, email address, hashed password, and authentication metadata
• merchant configuration data such as payout wallets, template settings, and support preferences
• payment and receipt data such as wallet addresses, transaction signatures, amounts, and timestamps
• membership and access data such as identity labels, renewal status, delivery status, and support context
• identity handshake data such as wallet-signed verification messages and linked user identifiers
• technical data such as IP addresses, device metadata, request logs, and rate-limit signals

3. How We Use Data

We use personal data to:

• provide and secure the Hilt service
• verify on-chain payment flows and generate receipts
• link buyer wallets to merchant-facing identities where a template requires it
• operate memberships, reminders, support workflows, and merchant verification tools
• respond to customer support requests and investigate delivery disputes
• comply with legal obligations and prevent fraud or abuse

4. On-Chain Data

Wallet addresses and transaction signatures are visible on public blockchains by design. Hilt may store and index this data to provide receipts, payments history, member verification, and access records. Where a wallet is linked to an off-chain identifier such as a Telegram handle, Discord handle, email, or customer reference, we treat the combined record as personal data.

5. Lawful Bases

We process data where necessary to perform a contract with you, comply with legal obligations, pursue legitimate interests such as fraud prevention and service security, or based on consent where consent is specifically required.

6. Sharing and Processors

We may share data with service providers that support infrastructure, hosting, payment processing, email delivery, support services, and blockchain infrastructure. We do not sell personal data. We may disclose data where required by law, regulation, or valid legal process.

7. Retention

We retain account data for as long as the account remains active and for a limited period after closure where needed for security, tax, bookkeeping, or dispute handling. Receipt, payment, and support records may be retained for longer where necessary for auditability, fraud prevention, or legal obligations.

8. Your Rights

If you are located in the UK, EEA, or another jurisdiction with similar rights, you may have rights to access, correct, delete, restrict, object to, or export certain personal data. To exercise these rights, email privacy@hilt.so.

9. Security

We use administrative, technical, and organisational measures designed to protect personal data. No system is completely secure, so you should also protect your own devices, wallets, credentials, and support channels.

10. Contact

Privacy enquiries should be sent to privacy@hilt.so.