D2EDevnet

Privacy Policy

Last updated: February 21, 2026

This Privacy Policy explains how D2E (Debug-to-Earn) ("we", "us", or "our") collects, uses, and protects information when you use our decentralized bug bounty platform ("Platform"). By using the Platform, you consent to the practices described in this policy.

1. Information We Collect

1.1 Wallet Information

When you connect your Solana wallet to the Platform, we collect your public wallet address. This address serves as your account identifier. We do not collect or have access to your private keys, seed phrases, or wallet passwords.

1.2 Bug Reports and Submissions

When you submit a bug report, we collect the content of your submission, including descriptions, reproduction scripts, and any supporting materials you provide.

1.3 Project Information

When you register a project, we collect the project name, description, repository URL, reward configuration, and related details you provide.

1.4 Usage Data

We automatically collect certain technical information when you use the Platform, including:

  • IP address and approximate geographic location.
  • Browser type, version, and operating system.
  • Pages visited, time spent on pages, and navigation patterns.
  • Referring URLs and exit pages.
  • Device identifiers and screen resolution.

1.5 Transaction Data

We record references to on-chain transactions related to bounty deposits, rewards, and other Platform activities. This data is derived from publicly available blockchain records.

2. How We Use Your Information

We use the information we collect to:

  • Operate, maintain, and improve the Platform.
  • Process and verify bug submissions and distribute rewards.
  • Display leaderboards and public profiles based on wallet addresses.
  • Detect, prevent, and address fraud, abuse, or technical issues.
  • Communicate with you about Platform updates (when a communication channel is available).
  • Generate aggregated, anonymized analytics to improve the Platform.

3. Blockchain Data and Public Information

D2E is built on the Solana blockchain. You should be aware that:

  • Blockchain transactions are public. All transactions on the Solana network, including bounty deposits, reward payments, and smart contract interactions, are permanently recorded on a public ledger. Anyone can view these transactions.
  • Wallet addresses are pseudonymous. While wallet addresses do not directly reveal your identity, they may be linked to your identity through third-party services, on-chain activity patterns, or other means outside our control.
  • On-chain data cannot be deleted. Once a transaction is recorded on the Solana blockchain, it cannot be modified or removed. This is a fundamental property of blockchain technology and is outside our control.

4. Cookies and Analytics

We may use cookies and similar tracking technologies to enhance your experience. These may include:

  • Essential cookies required for the Platform to function (e.g., wallet connection state).
  • Analytics cookies that help us understand how users interact with the Platform so we can make improvements.

You can configure your browser to reject cookies, but doing so may limit your ability to use certain features of the Platform.

5. Data Retention

We retain your off-chain data (usage logs, bug report metadata) for as long as necessary to operate the Platform and fulfill the purposes described in this policy. Specifically:

  • Bug report content and project data are retained for the lifetime of the Platform or until a project owner requests deletion.
  • Usage and analytics data are retained for up to 24 months, after which they are aggregated or deleted.
  • On-chain data (transactions, smart contract state) is permanently stored on the Solana blockchain and cannot be deleted by us.

6. Third-Party Services

The Platform integrates with or relies on the following third-party services, each of which has its own privacy practices:

  • Solana Network: All on-chain interactions are processed through the Solana blockchain. Transactions are public and governed by the Solana protocol.
  • USDC (Circle): Rewards are paid in USDC, a stablecoin issued by Circle. Circle's terms and privacy practices apply to USDC holdings.
  • Sentry: We may use Sentry for error tracking and performance monitoring. Sentry may process technical data such as error logs, stack traces, and device information.
  • Wallet providers: Your wallet provider (e.g., Phantom, Solflare) has its own privacy policy that governs how it handles your data.

We encourage you to review the privacy policies of these third-party services.

7. Data Sharing

We do not sell your personal information. We may share information in the following circumstances:

  • Public data: Wallet addresses, bug submission summaries, and leaderboard rankings are displayed publicly on the Platform.
  • Service providers: We may share data with trusted service providers who help us operate the Platform (e.g., hosting, analytics), subject to confidentiality obligations.
  • Legal requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
  • Safety and fraud prevention: We may share information to protect the rights, safety, or property of D2E, our users, or the public.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your off-chain personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your off-chain personal data, subject to legal and operational requirements. Note that on-chain data cannot be deleted.
  • Portability: Request your data in a portable format.
  • Objection: Object to certain processing of your data.

To exercise any of these rights, please contact us through the channels listed below.

9. Security

We implement reasonable technical and organizational measures to protect the information we collect. However, no system is perfectly secure. You are responsible for maintaining the security of your wallet and private keys. We strongly recommend using hardware wallets and enabling all available security features provided by your wallet provider.

10. Children's Privacy

The Platform is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child under 18, we will take steps to delete that information promptly.

11. International Data Transfers

The Platform may be accessed from various countries. By using the Platform, you consent to the transfer of your information to jurisdictions that may have different data protection laws than your own. We take reasonable steps to ensure your data is treated securely and in accordance with this policy.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of the Platform after changes are posted constitutes acceptance of the updated policy.

13. Contact

If you have questions or concerns about this Privacy Policy or our data practices, please reach out through our GitHub repository or open an issue in the project's public channels.