FlexiGo App Privacy Policy

1. What information do we collect?

• On-device data (never leaves your device): Private keys, mnemonic phrases, derivation path indices, and wallet-related settings (for example, network/RPC, custom thresholds). These are stored locally (for example, in iOS Keychain or UserDefaults) and are not transmitted to our servers.
• Public on-chain data: When you query balances or transaction history, your wallet address and related query parameters are sent to the selected blockchain RPC node as required to provide the service.
• Analytics and performance data (Firebase and Meta/Facebook SDKs): We use third-party analytics SDKs – currently Google Firebase and Meta/Facebook – to understand how FlexiGo is used and to improve stability and user experience. These services may collect information such as:
  • Device information (for example, device model, OS version, language, time zone, screen size)
  • App information (for example, app version, screens viewed, buttons tapped, session duration, crash reports)
  • Approximate location (for example, country or region derived from IP address)
  • Resettable identifiers and app-instance identifiers (for example, IDFV, Firebase app instance ID)
  We configure these services for analytics and diagnostics only. We do not use them to access the IDFA (Identifier for Advertisers), and we do not use them to perform cross-app tracking or personalized advertising.
• Network metadata from third-party RPC providers: When you use third-party RPC endpoints, those providers may log IP address, User-Agent, timestamps, and other network metadata under their own privacy policies. We do not control or participate in such logging.

2. How do we use your data?

• Private keys and mnemonic phrases are used only on your device for local signing and account derivation. They are not uploaded to our servers or shared with third parties. Where available, they may be protected by system biometrics or the device passcode.
• Your wallet address and query parameters are used solely to fetch balances, token and transaction information, or to submit signed transactions via the selected RPC endpoint.
• Analytics and performance data from Firebase and Meta/Facebook are used to:
  • Measure basic app usage (for example, how often certain screens are visited),
  • Understand crashes and performance issues, and
  • Help us decide which features to improve.
  We use these analytics in aggregate form where possible and do not use them to show personalized ads, build marketing profiles, or track you across other apps or websites.

We do not sell your data and do not use your information for advertising or cross-site tracking.

3. Third-party services and RPC nodes

FlexiGo allows you to select mainnet/testnet/devnet or configure custom RPC endpoints. When you use a third-party RPC provider, their privacy and rate-limit policies apply to your use of their service. We are not responsible for how third parties handle data such as IP address, request logs, or wallet addresses.

In addition, we use third-party analytics and diagnostic services:

• Google Firebase (Analytics and related services) – provided by Google LLC. These services help us measure app usage and performance. For more information about how Firebase handles data, please see Google’s Firebase Privacy and Security information and Google’s general privacy policy.
• Meta/Facebook SDK (App Events and related services) – provided by Meta Platforms, Inc. These services help us understand basic app usage and technical issues. For more information, please see Meta’s privacy policy and any SDK-specific documentation provided by Meta.

These third parties process analytics data under their own privacy policies. We do not share your mnemonic phrase or private keys with these providers.

4. Children and minors

FlexiGo is a financial tool intended primarily for adults with full legal capacity. Minors should only use the app with the consent and supervision of a parent or legal guardian and after proper assessment of the risks associated with crypto assets.

5. Security

• Private keys and mnemonic phrases are stored in device-level secure storage (such as iOS Keychain or equivalent). Where supported, Face ID / Touch ID / device passcode can be used as an additional protection layer.
• We strongly recommend backing up your mnemonic phrase offline (for example, on paper stored safely) to prevent permanent loss of access to your assets if the device is lost, damaged, or wiped.

6. Data retention and deletion

• You may delete the app at any time to remove locally stored data such as private keys, mnemonics, and settings from your device. Future versions may provide an in-app “Reset / Clear Wallet” option to wipe Keychain items.
• On-chain data resides on a public distributed ledger and cannot be modified or deleted by us.
• Server-side configuration and log data (such as gateway requests and high-level analytics) are retained only for as long as reasonably necessary for security, abuse prevention, analytics, and service stability, and then deleted or anonymized where feasible.

7. Your rights

Subject to applicable laws (for example, GDPR or CCPA), you may have rights to request access, correction, or deletion of your personal information. Because we typically do not host your identifiable personal information and most sensitive data remains on your device, many requests can be fulfilled locally by you (for example, uninstalling the app or resetting the wallet). For assistance, you may contact us using the email below.

8. International transfers

Depending on your location and the servers you choose, request data (including your wallet address and technical metadata) may be sent directly to servers in other countries or regions. Analytics data processed by Firebase and Meta/Facebook may also be stored or processed outside your country of residence. By using FlexiGo and selecting those endpoints, you consent to such international data transfers as necessary to provide the service.

9. Changes to this policy

We may update this policy from time to time. The updated version will be made available in the app or on our website and will be labeled with the “Last updated” date. Your continued use of the app after changes become effective constitutes your acceptance of the updated policy.

10. Contact us

For privacy inquiries or requests, please email: service@flexigoapp.com.

Disclaimer: Crypto assets are volatile and involve risk. Evaluate your own risk tolerance carefully. If your private keys or mnemonic phrase are lost or exposed, your assets may be irrecoverable. FlexiGo does not custody your assets and cannot be responsible for losses resulting from compromised credentials, device loss, or market movements.