Definitions

• Account: A unique account created for You to access our Service or parts of our Service.
• Company: Refers to Ledger Lock, United Kingdom.
• Cookies: Small files placed on Your computer, mobile device, or any other device by a website, containing the details of Your browsing history among its many uses.
• Country: Refers to the United Kingdom.
• Device: Any device that can access the Service, such as a computer, cellphone, or digital tablet.
• Personal Data: Any information that relates to an identified or identifiable individual.
• Service: Refers to the Website.
• Service Provider: Any natural or legal person who processes data on behalf of the Company. This refers to third-party companies or individuals employed by the Company to facilitate the Service, provide the Service on behalf of the Company, perform services related to the Service, or assist the Company in analyzing how the Service is used.
• Usage Data: Data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
• Website: Refers to Ledger Lock, accessible from https://ledgerlock.net.
• You: The individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Data Protection

We use state-of-the-art encryption techniques to protect your data both in transit and at rest. Our client-side encryption ensures that all your data is encrypted on your device before it reaches our servers, providing an additional layer of security.

User Privacy

At Ledger Lock, your privacy is our top priority. Our zero-knowledge security architecture ensures that we do not have access to your private keys or sensitive data. We do not track any personally identifiable information, account addresses, or asset balances, respecting your privacy in all aspects.

Authentication

To enhance the security of your account, we require multi-factor authentication (MFA). This adds an extra layer of protection by ensuring that only authorized users can access your account, even if your password is compromised.

Regular Audits

We conduct continuous security assessments and independent audits to ensure our platform adheres to the highest industry standards. Our commitment to regular audits helps us identify and address potential vulnerabilities promptly.

Cold Storage

For maximum security, Ledger Lock supports cold wallet solutions, such as Polkadot Vault, Ledger, and Keystone. These solutions allow you to store your digital assets offline, reducing the risk of online threats.

Phishing Prevention

To protect against phishing attacks, we integrate phishing lists from Polkadot {.js} and ChainPatrol. These measures help identify and warn users about potential phishing sites, enhancing the overall security of our platform.

Transparency

In line with our commitment to security and trust, Ledger Lock’s code is open-source. This transparency allows the community to audit and verify our security practices, ensuring that we maintain the highest standards.

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Security Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies. The Company will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company’s operating offices and in any other places where the parties involved in the processing are located. This information may be transferred to and maintained on computers located outside of Your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those from Your jurisdiction. Your consent to this Security Policy followed by Your submission of such information represents Your agreement to that transfer. The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Security Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information.

Delete Your Personal Data

You have the right to delete or request that We assist in deleting the Personal Data that We have collected about You. Our Service may give You the ability to delete certain information about You from within the Service. You may update, amend, or delete Your information at any time by signing in to Your Account, if you have one, and visiting the account settings section that allows you to manage Your personal information. You may also contact Us to request access to, correct, or delete any personal information that You have provided to Us. Please note, however, that We may need to retain certain information when we have a legal obligation or lawful basis to do so.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition, or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Security Policy.

Law Enforcement

Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

Other Legal Requirements

The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of Users of the Service or the public
• Protect against legal liability

Security of Your Personal Data

The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.

Children’s Privacy

Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers. If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent’s consent before We collect and use that information.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. If You click on a third-party link, You will be directed to that third party’s site. We strongly advise You to review the Security Policy of every site You visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Changes to this Security Policy

We may update Our Security Policy from time to time. We will notify You of any changes by posting the new Security Policy on this page. We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the “Last updated” date at the top of this Security Policy. You are advised to review this Security Policy periodically for any changes. Changes to this Security Policy are effective when they are posted on this page.