Privacy Policy

Last modified on 04 January 2026

At Candide, we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, and safeguard the information you provide to us when using our services.

Candide Developer Platform: (https://dashboard.candide.dev)

1. Information We Collect:
   - We collect your email address, GitHub username or gmail login, when you create an account on Candide Dashboard.
   - We do not directly collect any payment information. All payment processing is handled by our third-party payment processor, Mollie, which may collect your name, email address, and credit card details.

2. How We Use Your Information:
   - We use your email address, GitHub username or gmail login info to create and manage your Candide account, as well as to communicate with you about our services.
  - We may also use your email address to send you marketing materials and promotional emails about our own products and services that we think may be of interest to you.
  - We do not share your personal information with third parties for their own marketing purposes, and we do not use your personal information for research and development purposes.

3. Data Storage and Security:
   - Your personal information is stored on our in-house servers and is protected by standard security measures.
   - We retain your personal information for the duration required by European data protection laws.

4. Your Rights:
   - Under European data protection laws, you have the right to access, correct, and delete your personal information.
   - You can exercise these rights by contacting our email at team@candidelabs.com.

5. Third-Party Disclosures:
   - We do not share or disclose your personal information with any third parties, except for our payment processor, Stripe, which collects and processes your payment information.

6. Special Considerations:
   - We do not have any specific privacy policies or disclosures for minors or other special categories of users.

7. Contact Us:
   - If you have any questions or concerns about our privacy practices, please contact our team at team@candidelabs.com.

Safe OpenSig: (https://candide.dev/opensig)

This section outlines the privacy practices and data architecture specific to the Safe OpenSig verification instrument. Safe OpenSig is engineered on a "Local-First" principle to ensure that your transaction intent and signing logic remain strictly under your control.

1. Zero-Telemetry Architecture

Safe OpenSig is a private-by-design instrument.

 -No Personal Data: The application does not require an account, email, or device ID.
- No Tracking: We do not use third-party telemetry, analytics, or crash-reporting tools (e.g., Firebase, Sentry).
- Feedback & Support: Technical feedback or crash reports are only received if initiated by the user via email or the App Store’s manual feedback mechanism.

2. Local Execution & Data Ephemerality

- All forensic verification is performed locally on your device.
- Transient State: Transaction data construction and simulation results are stored in an ephemeral, temporary state. This data is cleared immediately upon closing the application and is never persisted.
- Addresses: Users may store Safe public addresses within the app for convenient access. This data is stored exclusively in your device's local storage. Candide Labs has no visibility into your stored addresses or transaction history.

3. Data Transmission & Verification Nodes

To provide The Verifiable Truth, the app interacts with blockchain state data.

- Candide's Nodes: When using Candide Labs' full nodes for simulation, we do not log IP addresses, request headers, or timestamps.
- Verification Consensus: To ensure cryptographic integrity, the app fetches state proofs from multiple independent node providers (including, but not limited to, Alchemy, Infura and other public RPCs). These providers operate under their own respective privacy policies.

4. Third-Party Metadata

 - Token Verification: The app fetches token metadata (icons and symbols) via the CoinMarketCap API to ensure human readable clarity during simulation. No user-identifying data is transmitted during these metadata fetches.

5. Your Rights & Data Erasure

Because Safe OpenSig is local-first, you maintain absolute sovereignty over your data. All locally stored preferences and addresses can be permanently erased at any time by uninstalling the application or clearing the app cache through your device settings.

By using Candide's services, you acknowledge that you have read and understood this Privacy Policy. We may update this policy from time to time, and we encourage you to review it periodically for any changes.