Privacy Policy

1. Overview

Viper is built on a minimal-data-collection principle. We collect only the information necessary to provide the execution service. We do not sell, rent, or share your data with third parties for marketing or advertising purposes. This policy explains what we collect, why, and how it is handled.

2. Information We Collect

The following data is collected as part of normal platform operation:

Wallet address — your public wallet address is provided when you connect. This is used to identify your account, authenticate sessions, and route orders to Hyperliquid on your behalf.

Trading credentials — the agent wallet key generated during connection is stored with server-side encryption using key derivation. Credentials are resolved on the backend via authenticated session lookup and are never transmitted to or stored on the frontend after initial connection.

Execution data — algorithm execution records, order history, fill data (including price, size, fees, maker/taker status, and builder fees), and performance metrics are stored in a persistent database on your dedicated infrastructure. This data enables execution analytics, fee auditing, and post-trade analysis.

Platform configuration — trade monitor rules, strategy configurations, instrument preferences, and user settings are stored server-side to persist across sessions.

Telegram account link — if you choose to connect Telegram, your Telegram account ID is linked to your wallet address to enable notifications and remote control. This link can be disconnected at any time from either the platform or Telegram.

3. Information We Do Not Collect

Viper does not collect:

Personal identity information — no name, email address, phone number, physical address, or government ID is required or requested. Viper authenticates via wallet signature only.

Private keys or seed phrases — Viper never has access to your wallet's private key or recovery phrase. The agent key used for trading is a separate, scoped credential that cannot withdraw funds.

Third-party tracking data — we do not use advertising trackers, social media pixels, cross-site tracking, or behavioural analytics services.

4. How We Use Information

Collected information is used solely to:

Authenticate your session and validate permissions. Execute trades and manage algorithms on your behalf via Hyperliquid. Store and display execution history, fill data, and performance analytics. Maintain trade monitor and strategy configurations across sessions. Deliver Telegram notifications and remote control functionality. Monitor system health, diagnose errors, and maintain service reliability. Prevent abuse and enforce our Terms of Service.

5. Data Storage and Security

All data is stored on dedicated infrastructure provisioned specifically for your use:

Server-side encryption — trading credentials are encrypted using key derivation and stored on the backend. Credentials are never stored in browser localStorage or transmitted to the frontend after initial wallet connection.

Dedicated infrastructure — each client operates on an isolated VPS with private database, independent execution engine, and direct exchange connectivity. Your data is not co-mingled with other clients' data.

Session authentication — user sessions are authenticated via cryptographic wallet signature verification. Session tokens are scoped and time-limited.

Data persistence — execution records, fill history, and configuration data persist across backend restarts, VPS reboots, container rebuilds, and deployment updates. This enables complete execution history spanning the full lifetime of the account.

6. Browser Local Storage

Viper uses browser local storage to maintain your session state, wallet connection preferences, UI settings, and builder fee approval cache. This data is stored locally in your browser and is not transmitted to any third party. You can clear this data at any time through your browser settings. Clearing local storage will require you to reconnect your wallet on next visit.

7. Third-Party Services

Viper integrates with the following third-party services as part of normal operation:

Hyperliquid — decentralised exchange where all trades are executed. Order data, positions, and balances are managed by Hyperliquid's infrastructure.

Wallet providers — MetaMask, Rabby, Coinbase Wallet, OKX, Binance Wallet, Phantom, and WalletConnect are used for wallet connection and transaction signing. These providers operate under their own privacy policies.

Telegram — optional integration for notifications and remote control. Message content between you and the Viper bot is subject to Telegram's privacy policy.

Network infrastructure — DNS, CDN, and secure tunnel services are provided by a third-party network provider. This provider may process request metadata (IP address, headers) in accordance with their own privacy policy.

Hosting infrastructure — dedicated VPS hosting is provided by a third-party data centre operator under their data processing terms. Client infrastructure is isolated per account.

8. Data Retention

Execution records, fill history, and performance data are retained for the lifetime of your account to support ongoing analytics and historical analysis. Diagnostic logs are retained for a limited period for debugging purposes and then purged. If you disconnect your wallet and request data deletion, we will remove your data from our systems within a reasonable timeframe. To request data deletion, contact support@viperexecution.com.

9. Your Rights

You have the following rights regarding your data:

Access — you may request a summary of the data we hold about your wallet address.

Deletion — you may request deletion of your data by disconnecting your wallet and contacting support.

Revocation — you may revoke all trading permissions at any time through Hyperliquid's interface, immediately ceasing all Viper activity on your behalf.

Telegram disconnection — you may unlink your Telegram account at any time from either the platform or directly via the Telegram bot.

10. Data Disclosure

We do not sell, rent, or share your data with third parties for marketing or commercial purposes. We may disclose data if required by law, regulation, legal process, or enforceable governmental request. We may also disclose data if necessary to protect the rights, property, or safety of Viper, its users, or the public.

11. Children's Privacy

Viper is not intended for use by anyone under the age of 18 or the age of legal majority in their jurisdiction. We do not knowingly collect data from minors. If we become aware that a minor has provided data to us, we will take steps to delete that data promptly.

12. Changes to This Policy

We may update this privacy policy at any time. Material changes will be communicated through the platform, via Telegram, or by email where applicable. Continued use of Viper after changes are posted constitutes acceptance of the updated policy. The "last updated" date at the top of this page reflects the most recent revision.

13. Contact

For privacy-related questions, data requests, or concerns: